Octopus Deploy Vulnerabilità

Sequenza temporale

Versione

2019.7.08
2019.7.18
2019.7.28
2019.7.36
2019.7.46

Contromisure

Official Fix22
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined28

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network28

Autenticazione

Not Defined0
High0
Low26
None2

Interazione dell'utente

Not Defined0
Required0
None28

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤54
≤612
≤70
≤812
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤56
≤610
≤72
≤810
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤512
≤60
≤714
≤82
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤58
≤60
≤76
≤84
≤910
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k26
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k28
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (78): 3.0, 3.1, 3.2, 3.3, 3.4, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.1.4, 4.1.5, 4.1.6, 4.1.7, 4.1.8, 2018.5, 2018.5.1, 2018.5.2, 2018.5.3, 2018.5.4, 2018.5.5, 2018.5.6, 2018.5.7, 2018.10.3 LTS, 2019.1, 2019.1.1, 2019.1.2, 2019.1.3, 2019.1.4, 2019.1.5, 2019.1.6, 2019.1.7, 2019.3, 2019.3.1, 2019.4, 2019.4.1, 2019.4.2, 2019.4.3, 2019.4.4, 2019.4.5, 2019.6, 2019.6.1, 2019.6.2, 2019.6.3, 2019.6.4, 2019.6.5, 2019.6.6, 2019.7, 2019.7.1, 2019.7.2, 2019.7.3, 2019.7.4, 2019.7.5, 2019.7.6, 2019.7.7, 2019.7.8, 2019.7.9, 2019.10.1, 2019.10.2, 2019.10.3, 2019.10.4, 2019.12, 2019.12.1, 2020.0, 2020.1, 2020.1.1, 2020.1.2, 2020.1.3, 2020.1.4, 2020.2, 2020.3, 2020.3.1, 2020.3.2, 2020.3.3, 2020.4, 2020.4.1, 2020.4.2, 2020.4.3, 2020.4.4

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
27/10/20205.55.5Octopus Deploy HTTP Host Header Redirect$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-26161
23/10/20206.56.2Octopus Deploy Websocket Endpoint Privilege Escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-27155
13/10/20205.55.5Octopus Deploy Task Log rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-25825
09/09/20205.95.6Octopus Deploy Password rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-24566
25/08/20205.34.9Octopus Deploy Certificate autenticazione debole$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-16197
19/06/20205.45.1Octopus Deploy Deployment Password rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-14470
28/04/20205.35.1Octopus Deploy TaskView Permission rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-12286
19/03/20207.57.4Octopus Deploy On-Premise Active Directory escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.08CVE-2020-10678
28/11/20196.46.2Octopus Deploy Team API escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2019-19376
28/11/20194.24.1Octopus Deploy SSL Offloading rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2019-19375

17 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 17 results.

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!