Adam Mccoy

**Name of the Vulnerable Software and Affected Versions** Octopus Server (affected versions not specified) **Description** The issue allows an attacker to discover the existence of resources in a space that the user does not have access to, due to verbose error messaging. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Octopus Server (affected versions not specified) **Description** The issue arises when a sensitive value is a substring of another value, causing sensitive value masking to only partially work. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.