CVE-2023-1904 Information

Description

In affected versions of Octopus Server it is possible for the OpenID client secret to be logged in clear text during the configuration of Octopus Server.

Reference

https://advisories.octopus.com/post/2023/sa2023-12/