Alertes
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

samedi 23 janvier 2021

Octopus Deploy Server/Tentacle Agent up to 4.0.977 OctopusDSC cleartext transmission

A vulnerability has been found in Octopus Deploy Server and Tentacle Agent up to 4.0.977 and classified as problematic. This vulnerability affects an unknown code block of the component OctopusDSC. Upgrading to version 4.0.1002 eliminates this vulnerability. The upgrade is hosted for download at github.com. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.

Lien vers l'article source

BigProf Online Invoicing System 4.0 app/items_view.php cross-site request forgery Trojan.Win32.Xocry.ff c:\ProgData permission
Auteur: VulDB

Catégories: VulDBNombre de vues: 120

x

Événements SSI