In Octopus Deploy 3.3.0 up to and including 2019.10.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted package, triggering an exception that exposes underlying operating system details.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
octopus octopus deploy |