In affected versions of Octopus Server it is possible for the OpenID client secret to be logged in clear text during the configuration of Octopus Server.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://advisories.octopus.com/post/2023/sa2023-12/ |
History
Wed, 18 Sep 2024 07:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In affected versions of Octopus Server it is possible for the OpenID client secret to be logged in clear text during the configuration of Octopus Server. | In affected versions of Octopus Server it is possible for the OpenID client secret to be logged in clear text during the configuration of Octopus Server. |
MITRE
Status: PUBLISHED
Assigner: Octopus
Published: 2023-12-14T07:23:08.589Z
Updated: 2024-09-18T07:09:21.166Z
Reserved: 2023-04-06T06:30:38.789Z
Link: CVE-2023-1904
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-14T08:15:36.550
Modified: 2024-11-21T07:40:06.983
Link: CVE-2023-1904
Redhat
No data.