cbcvebase.
CVE-2025-0588
published 2025-02-11

CVE-2025-0588: In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a…

PriorityP422medium4.9CVSS 3.1
AVNACLPRHUINSUCNINAH
EPSS
0.39%
30.9th percentile
In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a specifically crafted referrer header the user could ensure that all subsequent server responses would return 500 errors rendering the site mostly unusable. The user would be able to subsequently set and unset the referrer header to control the denial of service state with a valid CSRF token whilst new CSRF tokens could not be generated.

Affected

4 ranges
VendorProductVersion rangeFixed in
octopusoctopus_server>= 2020.1.0 < 2024.3.130972024.3.13097
octopusoctopus_server>= 2024.4.401 < 2024.4.70912024.4.7091
octopus_deployoctopus_server>= 2020.1.0 < 2024.3.130972024.3.13097
octopus_deployoctopus_server>= 2024.4.401 < 2024.4.70912024.4.7091

CVSS provenance

nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvdv4.05.9MEDIUMCVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.