exploitDog

GHSA-qxv6-wcr6-hh88

Опубликовано: 06 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

In affected versions of Octopus Server it was identified that a session cookie could be used as the CSRF token

In affected versions of Octopus Server it was identified that a session cookie could be used as the CSRF token

Ссылки

EPSS

Процентиль: 31%

0.00117

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-613

Связанные уязвимости

CVE-2022-2783

CVSS3: 5.3

nvd

больше 3 лет назад

In affected versions of Octopus Server it was identified that a session cookie could be used as the CSRF token

EPSS

Процентиль: 31%

0.00117

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-613