High severity8.8NVD Advisory· Published Jan 16, 2018· Updated Jun 17, 2026
CVE-2018-5706
CVE-2018-5706
Description
An issue was discovered in Octopus Deploy before 4.1.9. Any user with user editing permissions can modify teams to give themselves Administer System permissions even if they didn't have them, as demonstrated by use of the RoleEdit or TeamEdit permission.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <4.1.9
Patches
Vulnerability mechanics
References
1- github.com/OctopusDeploy/Issues/issues/4167nvdIssue TrackingMitigationThird Party Advisory
News mentions
0No linked articles in our index yet.