Lucene search
PRIOn knowledge basePRION:CVE-2020-12286HistoryApr 28, 2020 - 7:15 a.m.
Design/Logic Flaw
2020-04-2807:15:00
PRIOn knowledge base
www.prio-n.com
In Octopus Deploy before 2019.12.9 and 2020 before 2020.1.12, the TaskView permission is not scoped to any dimension. For example, a scoped user who is scoped to only one tenant can view server tasks scoped to any other tenant.
| CPE | Name | Operator | Version |
|---|---|---|---|
| octopus_deploy | ge | 2020.1 | |
| octopus_deploy | lt | 2020.1.12 | |
| octopus_deploy | lt | 2019.12.9 |
Related
nvd
nvd
CVE-2020-12286
2020-04-28 07:15:12
cvelist
cvelist
CVE-2020-12286
2020-04-28 06:06:24
cve
cve
CVE-2020-12286
2020-04-28 07:15:12