2 matches found
CVE-2018-10581
In Octopus Deploy 3.4.x before 2018.4.7, an authenticated user is able to view/update/save variable values within the Tenant Variables area for Environments that do not exist within their associated Team scoping. This occurs in situations where this authenticated user also belongs to multiple...
CVE-2018-10581
CVE-2018-10581 affects Octopus Deploy 3.4.x prior to 2018.4.7. An authenticated user can view/update/save variable values in the Tenant Variables area for Environments that are not present within their Team scoping, in scenarios where the user belongs to multiple teams and at least one team has V...