CVE-2023-1904 | Octopus Server prior 2023.1.11942/2023.2.13151/2023.3.5049 OpenID Client Secret log file

Posted by Angelo Barbosa | Dec 14, 2023 | CVE

A vulnerability was found in Octopus Server. It has been classified as problematic. Affected is an unknown function of the component OpenID Client Secret Handler. The manipulation leads to sensitive information in log files.

This vulnerability is traded as CVE-2023-1904. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-1904 | Octopus Server prior 2023.1.11942/2023.2.13151/2023.3.5049 OpenID Client Secret log file

Related Posts

CVE-2024-31208 | element-hq synapse up to 1.105.0 V2 State Resolution Algorithm allocation of resources (GHSA-3h7q-rfh9-xm4v)

CVE-2024-41482 | Typora up to 1.9.2 MathJax cross site scripting

CVE-2024-24293 | bit loader 10.0.3 index.js e prototype pollution

CVE-2024-28167 | SAP Group Reporting Data Collection 1.0.0 Enter Package Data authorization