In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.
https://advisories.octopus.com/post/2024/sa2024-05/
Source: Mitre, NVD
Published: 2024-07-25
Updated: 2024-07-25
Base Score: 1.7
Vector: CVSS2#AV:N/AC:H/Au:M/C:P/I:N/A:N
Severity: Low
Base Score: 2.2
Vector: CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N