exploitDog

GHSA-7w22-h336-hrv9

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

When configuring Octopus Server if it is configured with an external SQL database, on initial configuration the database password is written to the OctopusServer.txt log file in plaintext.

When configuring Octopus Server if it is configured with an external SQL database, on initial configuration the database password is written to the OctopusServer.txt log file in plaintext.

Ссылки

EPSS

Процентиль: 37%

0.00156

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312

Связанные уязвимости

CVE-2021-31816

CVSS3: 7.5

nvd

больше 4 лет назад

When configuring Octopus Server if it is configured with an external SQL database, on initial configuration the database password is written to the OctopusServer.txt log file in plaintext.

EPSS

Процентиль: 37%

0.00156

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312