When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2021-10-06 18:15
Updated : 2022-07-27 09:57
NVD link : CVE-2021-26556
Mitre link : CVE-2021-26556
JSON object : View
CWE
CWE-426
Untrusted Search Path
Products Affected
octopus
- octopus_deploy
- octopus_server