CVE-2025-0589 | Octopus Deploy Octopus Server up to 2024.3.13070/2024.4.7064 API Endpoints improper authentication

Inserito da Angelo Barbosa | Feb 11, 2025 | CVE

A vulnerability, which was classified as critical, was found in Octopus Deploy Octopus Server up to 2024.3.13070/2024.4.7064. Affected is an unknown function of the component API Endpoints. The manipulation leads to improper authentication.

This vulnerability is traded as CVE-2025-0589. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-0589 | Octopus Deploy Octopus Server up to 2024.3.13070/2024.4.7064 API Endpoints improper authentication

Post correlati

CVE-2024-2249 | LA-Studio Element Kit for Elementor Plugin up to 1.3.7.4 on WordPress cross site scripting

CVE-2024-53812 | Jacques Malgrange WP GeoNames Plugin up to 1.8 on WordPress cross site scripting

CVE-2024-4635 | ThemeIsle Menu Icons Plugin up to 0.13.13 on WordPress SVG Upload cross site scripting

CVE-2024-12262 | Ebook Store Plugin up to 5.8001 on WordPress step cross site scripting