Medium severity5.3NVD Advisory· Published Jul 15, 2022· Updated Jun 17, 2026
CVE-2022-1881
CVE-2022-1881
Description
In affected versions of Octopus Server an Insecure Direct Object Reference vulnerability exists where it is possible for a user to download Project Exports from a Project they do not have permissions to access. This vulnerability only impacts projects within the same Space.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- advisories.octopus.com/post/2022/sa2022-06/nvdVendor Advisory
News mentions
0No linked articles in our index yet.