It is possible for an API key to be logged in clear text in the audit log file after an invalid login attempt.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://advisories.octopus.com/post/2024/sa2024-02/ |
History
Thu, 07 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-319 |
Thu, 19 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Octopus
Octopus octopus Server |
|
CPEs | cpe:2.3:a:octopus:octopus_server:-:*:*:*:*:*:*:* | |
Vendors & Products |
Octopus
Octopus octopus Server |
|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Octopus
Published: 2024-04-17T23:10:37.111Z
Updated: 2024-11-07T16:55:13.840Z
Reserved: 2023-08-24T03:00:03.168Z
Link: CVE-2023-4509
Vulnrichment
Updated: 2024-08-02T07:31:05.976Z
NVD
Status : Awaiting Analysis
Published: 2024-04-18T00:15:07.340
Modified: 2024-11-21T08:35:19.260
Link: CVE-2023-4509
Redhat
No data.