VYPR
High severity7.8NVD Advisory· Published Oct 7, 2021· Updated Jun 17, 2026

CVE-2021-26556

CVE-2021-26556

Description

When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.

Affected products

2
  • Octopus/Serverllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 0.9

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.