CVE-2022-23184

Summary

In affected Octopus Server versions when the server HTTP and HTTPS bindings are configured to localhost, Octopus Server will allow open redirects.

Affected Software

VendorProductVersion RangeStatus
Octopus DeployOctopus Serverunspecified < 2021.2.8011affected
Octopus DeployOctopus Serverunspecified < 2021.3.11057affected

Weaknesses

  • Open Redirect Vulnerability in Octopus Server

ADP Enrichment

CVE Program Container

Additional References

References