CVE-2022-2528

CVE-2022-2528

EPSS 0.4%

In affected versions of Octopus Deploy it is possible to upload a package to built-in feed with insufficient permissions after re-indexing packages.

Produtos afetados

Octopus Deploy · Octopus Server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://advisories.octopus.com/post/2022/sa2022-13/