CVE-2024-4811: In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.

2.2 CVSS

Description

In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.

CVSS Base Severity: LOW

CVSS Base Score: 2.2

Vendor: Octopus Deploy

Product: Octopus Server

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.64% (scored less or equal to compared to others)

EPSS Date: 2025-02-14 (when was this score calculated)

2025-01-17 00:30:25 UTC
CVE

In affected versions of Octopus Server under certain conditions, a user with specific role assignments can access restricted project artifacts.