Security Advisory

CVE-2022-1670

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-19 04:25:09

Last updated 2024-08-03 00:10:03

Assigner Octopus

State PUBLISHED

Description

When generating a user invitation code in Octopus Server, the validity of this code can be set for a specific number of users. It was possible to bypass this restriction of validity to create extra user accounts above the initial number of invited users.

← Browse all CVEs View on cve.org ↗