CVE-2022-2721
CVSS V2 None
CVSS V3 None
Description
In affected versions of Octopus Server it is possible for target discovery to print certain values marked as sensitive to log files in plaint-text in when verbose logging is enabled.
Overview
- CVE ID
- CVE-2022-2721
- Assigner
- security@octopus.com
- Vulnerability Status
- Analyzed
- Published Version
- 2022-11-25T05:15:12
- Last Modified Date
- 2022-11-29T20:25:24
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:octopus:octopus_server:*:*:*:*:*:*:*:* | 1 | OR | 2022.2.6729 | 2022.2.7965 |
| cpe:2.3:a:octopus:octopus_server:*:*:*:*:*:*:*:* | 1 | OR | 2022.3.348 | 2022.3.9163 |
References
| Reference URL | Reference Tags |
|---|---|
| https://advisories.octopus.com/post/2022/sa2022-24/ |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2022-2721 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2721 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-11-25 06:00:29 | Added to TrackCVE | |||
| 2022-12-07 18:03:40 | 2022-11-25T05:15Z | 2022-11-25T05:15:12 | CVE Published Date | updated |
| 2022-12-07 18:03:40 | 2022-11-29T20:25:24 | CVE Modified Date | updated | |
| 2022-12-07 18:03:40 | Analyzed | Vulnerability Status | updated | |
| 2022-12-07 18:03:41 | CWE-532 | Weakness Enumeration | new | |
| 2022-12-07 18:03:42 | CPE Information | updated |