Browse all 64 CVE security advisories affecting Octopus Deploy. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Octopus Deploy is a continuous deployment platform designed to automate the release of software applications across diverse environments, primarily serving DevOps teams seeking streamlined release management. Historically, its software has been associated with sixty-four recorded Common Vulnerabilities and Exposures, predominantly involving cross-site scripting, server-side request forgery, and improper access control issues. These flaws often stem from inadequate input validation or insufficient authentication checks within the web interface, allowing potential remote code execution or privilege escalation for authenticated users. While the platform does not manage source code directly, its integration capabilities mean compromised instances can impact downstream deployment pipelines. Security updates are regularly issued to patch these identified weaknesses, yet the high volume of past CVEs highlights the complexity of securing complex deployment orchestration tools. Organizations must prioritize timely patching and strict access controls to mitigate risks associated with these historical vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-3614 | Octopus Deploy 输入验证错误漏洞 — Octopus Server | 7.2 | - | 2023-01-03 |
| CVE-2022-3460 | Octopus Deploy 信息泄露漏洞 — Octopus Server | 7.5 | - | 2023-01-02 |
| CVE-2022-2721 | Octopus Server 日志信息泄露漏洞 — Octopus Server | 7.5 | - | 2022-11-25 |
| CVE-2022-2572 | Octopus Server 授权问题漏洞 — Octopus Server | 9.8 | - | 2022-11-01 |
| CVE-2022-2508 | Octopus Server 安全漏洞 — Octopus Server | 5.3 | - | 2022-10-27 |
| CVE-2022-2782 | Octopus Server 代码问题漏洞 — Octopus Server | 9.1 | - | 2022-10-26 |
| CVE-2022-2780 | Octopus Server 安全漏洞 — Octopus Server | 8.1 | - | 2022-10-14 |
| CVE-2022-2828 | Octopus Server 安全漏洞 — Octopus Server | 5.3 | - | 2022-10-13 |
| CVE-2022-2720 | Octopus Server 安全漏洞 — Octopus Server | 5.3 | - | 2022-10-12 |
| CVE-2022-2783 | Octopus Server 跨站请求伪造漏洞 — Octopus Server | 9.1 | - | 2022-10-06 |
| CVE-2022-2781 | Octopus Server 加密问题漏洞 — Octopus Server | 5.3 | - | 2022-10-06 |
| CVE-2022-2778 | Octopus Deploy 安全漏洞 — Octopus Server | 8.2 | - | 2022-09-30 |
| CVE-2022-2760 | Octopus Deploy 安全漏洞 — Octopus Server | 4.3 | - | 2022-09-28 |
| CVE-2022-2528 | Octopus Deploy 安全漏洞 — Octopus Server | 6.5 | - | 2022-09-09 |
| CVE-2022-2075 | Octopus Deploy 安全漏洞 — Octopus Server | 7.5 | - | 2022-08-19 |
| CVE-2022-2074 | Octopus Deploy 安全漏洞 — Octopus Server | 7.5 | - | 2022-08-19 |
| CVE-2022-2049 | Octopus Deploy 安全漏洞 — Octopus Server | 7.5 | - | 2022-08-19 |
| CVE-2022-1901 | Octopus Deploy 信息泄露漏洞 — Octopus Server | 5.3 | - | 2022-08-19 |
| CVE-2022-30532 | Octopus Deploy 安全漏洞 — Octopus Server | 5.3 | - | 2022-07-19 |
| CVE-2022-29890 | Octopus Server 跨站脚本漏洞 — Octopus Server | 6.1 | - | 2022-07-15 |
| CVE-2022-1881 | Octopus Server 安全漏洞 — Octopus Server | 4.3 | - | 2022-07-15 |
| CVE-2022-2013 | Octopus Server 安全漏洞 — Octopus Server | 7.5 | - | 2022-06-12 |
| CVE-2022-1670 | Octopus Server 安全漏洞 — Octopus Server | 7.5 | - | 2022-05-19 |
| CVE-2022-1502 | Octopus Server 安全漏洞 — Octopus Server | 6.5 | - | 2022-05-04 |
| CVE-2022-23184 | Octopus Server 输入验证错误漏洞 — Octopus Server | 6.1 | - | 2022-02-07 |
| CVE-2021-31821 | Octopus Server 信息泄露漏洞 — Octopus Tentacle | 5.5 | - | 2022-01-19 |
| CVE-2021-31822 | Octopus Server 配置错误漏洞 — Octopus Tentacle | 7.8 | - | 2021-11-24 |
| CVE-2021-26557 | Octopus Tentacle 代码问题漏洞 — Octopus Tentacle | 8.4 | - | 2021-10-07 |
| CVE-2021-26556 | Octopus Server 代码问题漏洞 — Octopus Server | 8.4 | - | 2021-10-07 |
| CVE-2021-31819 | Halibut 代码问题漏洞 — Halibut | 9.8 | - | 2021-09-22 |
This page lists every published CVE security advisory associated with Octopus Deploy. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.