CVE-2022-2778 Information

Description

In affected versions of Octopus Deploy it is possible to bypass rate limiting on login using null bytes.

Reference

https://advisories.octopus.com/post/2022/sa2022-15/