Security Advisory

CVE-2018-12089

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-11 10:00:00

Last updated 2024-09-16 16:23:37

Assigner mitre

State PUBLISHED

Description

In Octopus Deploy version 2018.5.1 to 2018.5.7, a user with Task View is able to view a password for a Service Fabric Cluster, when the Service Fabric Cluster target is configured in Azure Active Directory security mode and a deployment is executed with OctopusPrintVariables set to True. This is fixed in 2018.6.0.

← Browse all CVEs View on cve.org ↗