Octopus Deploy · Octopus Deploy · CVE-2019-8944
**Name of the Vulnerable Software and Affected Versions**
Octopus Deploy versions prior to 2018.10.4 LTS
Octopus Deploy versions prior to 2019.1.8
**Description**
An Information Exposure issue in the Terraform deployment step allows remote authenticated users to view sensitive Terraform output variables via log files.
**Recommendations**
For versions prior to 2018.10.4 LTS, update to version 2018.10.4 LTS or later.
For versions prior to 2019.1.8, update to version 2019.1.8 or later.