Sensitive Variables Unmasked in Octopus Deploy Variable Preview

Sensitive Variables Unmasked in Octopus Deploy Variable Preview

CVE-2022-3460 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In affected versions of Octopus Deploy it is possible for certain types of sensitive variables to inadvertently become unmasked when viewed in variable preview.

Learn more about our Web Application Penetration Testing UK.