Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When generating a user invitation code in Octopus Server, the validity of this code can be set for a specific number of users. It was possible to bypass this restriction of validity to create extra user accounts above the initial number of invited users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Octopus Server 安全漏洞
Vulnerability Description
Octopus Server是一个自动化部署平台。 Octopus Server 存在安全漏洞,该漏洞源于Octopus Server在生成用户邀请码时,可以针对特定数量的用户设置该邀请码的有效性。攻击者利用该漏洞可以绕过有效性限制,在受邀用户的初始数量之上创建额外的用户帐户。
CVSS Information
N/A
Vulnerability Type
N/A