Octopus Halibut vulnerabilities

1 known vulnerability affecting octopus/halibut.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

CRITICAL1

Vulnerabilities

Page 1 of 1

CVE-2021-31819CRITICALCVSS 9.8fixed in 4.4.72021-09-22

CVE-2021-31819 [CRITICAL] CWE-502 CVE-2021-31819: In Halibut versions prior to 4.4.7 there is a deserialisation vulnerability that could allow remote In Halibut versions prior to 4.4.7 there is a deserialisation vulnerability that could allow remote code execution on systems that already trust each other based on certificate verification.