Security Advisory

CVE-2020-12286

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-28 06:06:24

Last updated 2024-08-04 11:48:58

Assigner mitre

State PUBLISHED

Description

In Octopus Deploy before 2019.12.9 and 2020 before 2020.1.12, the TaskView permission is not scoped to any dimension. For example, a scoped user who is scoped to only one tenant can view server tasks scoped to any other tenant.

← Browse all CVEs View on cve.org ↗