exploitDog

GHSA-9qww-9g4v-vq9h

Опубликовано: 10 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

In affected versions of Octopus Deploy it is possible to upload a package to built-in feed with insufficient permissions after re-indexing packages.

In affected versions of Octopus Deploy it is possible to upload a package to built-in feed with insufficient permissions after re-indexing packages.

Ссылки

EPSS

Процентиль: 32%

0.00125

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2022-2528

CVSS3: 6.5

nvd

больше 3 лет назад

In affected versions of Octopus Deploy it is possible to upload a package to built-in feed with insufficient permissions after re-indexing packages.

EPSS

Процентиль: 32%

0.00125

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-276