CVE-2021-26557
N/A
N/A
Summary
When Octopus Tentacle is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Octopus Deploy | Octopus Tentacle | 3.15.4 < unspecified | affected |
| Octopus Deploy | Octopus Tentacle | unspecified < 6.0.489 | affected |
Weaknesses
- Local privilege escalation in Octopus Tentacle (Windows)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.