VYPR
Unrated severityNVD Advisory· Published Jan 22, 2021· Updated Aug 3, 2024

Cleartext Storage of Sensitive Information

CVE-2021-21270

Description

OctopusDSC is a PowerShell module with DSC resources that can be used to install and configure an Octopus Deploy Server and Tentacle agent. In OctopusDSC version 4.0.977 and earlier a customer API key used to connect to Octopus Server is exposed via logging in plaintext. This vulnerability is patched in version 4.0.1002.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Octopus/Octopusdscllm-fuzzy2 versions
    <=4.0.977+ 1 more
    • (no CPE)range: <=4.0.977
    • (no CPE)range: < 4.0.1002

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.