Origin Validation Error in Akinsoft OctoCloud Affects Web Application Security
CVE-2024-12973

4.7MEDIUM

Key Information:

Vendor: Akinsoft
Status: Octocloud
Vendor: CVE Published:; 2 September 2025

What is CVE-2024-12973?

An Origin Validation Error vulnerability in Akinsoft OctoCloud may allow attackers to exploit HTTP Response Splitting. This issue impacts OctoCloud versions from s1.09.01 to before v1.11.01, potentially enabling unauthorized access to sensitive information and other security breaches.

Affected Version(s)

OctoCloud s1.09.01

References

https://www.usom.gov.tr/bildirim/tr-25-0203

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 2, 2025
Vulnerability Reserved
Dec 26, 2024

Credit

Berat ARSLAN