← Back to CVEs
CVE-2019-8944
N/ADescription
An Information Exposure issue in the Terraform deployment step in Octopus Deploy before 2019.1.8 (and before 2018.10.4 LTS) allows remote authenticated users to view sensitive Terraform output variables via log files.
CVE Details
CVSS v3.1 ScoreN/A
Published2/20/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
octopus:octopus_deployoctopus:octopus_server
Weaknesses (CWE)
CWE-532
References
https://github.com/OctopusDeploy/Issues/issues/5314(cve@mitre.org)
https://github.com/OctopusDeploy/Issues/issues/5315(cve@mitre.org)
https://github.com/OctopusDeploy/Issues/issues/5314(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/OctopusDeploy/Issues/issues/5315(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.