Octopus: >> Octopus Server >> 2022.1.3135 Security Vulnerabilities
In affected versions of Octopus Deploy it is possible to bypass rate limiting on login using null bytes.
CVSS Score
9.8
EPSS Score
0.007
Published
2022-09-30
In affected versions of Octopus Deploy it is possible to reveal the Space ID of spaces that the user does not have access to view in an error message when a resource is part of another Space.
CVSS Score
4.3
EPSS Score
0.004
Published
2022-09-28
Page 4