CVE-2022-1881
CVE-2022-1881
In affected versions of Octopus Server an Insecure Direct Object Reference vulnerability exists where it is possible for a user to download Project Exports from a Project they do not have permissions to access. This vulnerability only impacts projects within the same Space.
Affected products
Octopus Deploy · Octopus ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →