VYPR

Octopusdsc

by Octopus

CVEs (2)

  • CVE-2017-15609HigOct 19, 2017
    risk 0.49cvss 7.5epss 0.01

    Octopus before 3.17.7 allows attackers to obtain sensitive cleartext information by reading a variable JSON file in certain situations involving Offline Drop Targets.

  • CVE-2021-21270Jan 22, 2021
    risk 0.00cvss epss 0.00

    OctopusDSC is a PowerShell module with DSC resources that can be used to install and configure an Octopus Deploy Server and Tentacle agent. In OctopusDSC version 4.0.977 and earlier a customer API key used to connect to Octopus Server is exposed via logging in plaintext. This…