CVE-2024-4456 – In affected versions of Octopus Server with certain access levels it was possible to …

8 May 2024

Vuln ID: CVE-2024-4456

Published: 2024-05-08 01:15:06.667

Description: In affected versions of Octopus Server with certain access levels it was possible to embed a Cross-Site Scripting payload on the audit page.

Base Score: 4.1 – MEDIUM

Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L

Source: NVD.NIST.GOV

Date:

8 May 2024

Categorie(s):

NVD

Tag(s):

NVD

Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam19 May 2024
Week in review: New Black Basta’s social engineering campaign, passing the CISSP exam in 6 weeks19 May 2024
Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide19 May 2024
Enhanced Security for Enterprises: Google Launches Google Threat Intelligence19 May 2024
Hackers Exploiting Docusign With Phishing Attack To Steal Credentials19 May 2024