Is Octopus Vulnerable to CVE-2019-18935

(Tom Fawley) #1

Morning,

As we use Octopus in our estate to manage deployments etc. I just wanted to query if any of this tooling uses any of the Telerik UI libraries etc as we have been made aware that in certain (older) versions of this the below vulnerability is present;

https://nvd.nist.gov/vuln/detail/CVE-2019-18935

Does the Octopus tooling make use of any of these Telerik libraries?

Cheers,

Tom

(Justin Walsh) #3

Hi @tom.fawley!

Thanks for reaching out - thankfully, we don’t use any Telerik libraries, so there’s nothing to worry about with that CVE.

Happy Deployments!