CVE-2022-1881

🗓️ 15 Jul 2022 07:40:10Reported by OctopusType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 57 Views

Insecure Direct Object Reference vulnerability in Octopus Server allows unauthorized Project Export downloads

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2022-1881	15 Jul 202208:15	–	attackerkb
Circl	CVE-2022-1881	15 Jul 202212:34	–	circl
CNNVD	Octopus Server 安全漏洞	15 Jul 202200:00	–	cnnvd
Cvelist	CVE-2022-1881	15 Jul 202207:40	–	cvelist
EUVD	EUVD-2022-25154	3 Oct 202520:07	–	euvd
NVD	CVE-2022-1881	15 Jul 202208:15	–	nvd
OSV	CVE-2022-1881	15 Jul 202208:15	–	osv
Prion	Design/Logic Flaw	15 Jul 202208:15	–	prion
RedhatCVE	CVE-2022-1881	22 May 202522:19	–	redhatcve

NVD

Node

octopus octopus_serverRange2021.1.6959–2021.3.13021

octopus octopus_serverRange2022.1.2121–2022.1.2894

octopus octopus_serverRange2022.2.6729–2022.2.6971

octopus octopus_serverRange2022.3.348–2022.3.2616

[
  {
    "product": "Octopus Server",
    "vendor": "Octopus Deploy",
    "versions": [
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "2021.1.1",
        "versionType": "custom"
      },
      {
        "lessThan": "2021.3.13021",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "2022.1.2121",
        "versionType": "custom"
      },
      {
        "lessThan": "2022.1.2894",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "2022.2.6729",
        "versionType": "custom"
      },
      {
        "lessThan": "2022.2.6971",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "2022.3.348",
        "versionType": "custom"
      },
      {
        "lessThan": "2022.3.2616",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]