{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2017-07-16T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "In Octopus Deploy 3.x before 3.15.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted NuGet package, potentially overwriting other packages or modifying system files. This is a directory traversal in the PackageId value."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-17T00:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/OctopusDeploy/Issues/issues/3654"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-11348", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In Octopus Deploy 3.x before 3.15.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted NuGet package, potentially overwriting other packages or modifying system files. This is a directory traversal in the PackageId value."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/OctopusDeploy/Issues/issues/3654", "refsource": "CONFIRM", "url": "https://github.com/OctopusDeploy/Issues/issues/3654"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T18:05:30.788Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/OctopusDeploy/Issues/issues/3654"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-11348", "datePublished": "2017-07-17T00:00:00.000Z", "dateReserved": "2017-07-16T00:00:00.000Z", "dateUpdated": "2024-08-05T18:05:30.788Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:octopus:octopus_deploy:3.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "9592A1CB-D692-42CA-99B0-49A0494D4F74", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_deploy:3.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "FCA6E50F-0AFC-4977-A63D-133F64B715A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "06638B98-91C6-4F48-8DD5-69F90FFF74A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "43708008-E680-4083-99DD-A737749C53DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "D7524BE5-2EDC-4D5C-97FF-392A7B80211B", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "D22DEEAA-93DE-43F9-A218-AD46E278C04D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "11FC407C-A5C7-4104-A9AE-EF48A317886B", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "1551AB5E-482E-4DB2-A2CB-3CD04212A6A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "4B8622F5-163F-4B5A-9971-D876BA5A939F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "781BDF8F-F837-462C-A2B3-4AA204F27A00", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "B47BE91C-DBE5-4DA5-BB89-E9384DCC4BBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "033F6B90-8000-4F85-9B3E-CD1564B8D6CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "A84514B1-1230-4CCB-A621-157A3AFBBB8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "6DD1E776-01C1-47E6-A45F-DE8AB1A9990A", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "F024D605-633A-4D22-B814-A7703F10F012", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.13:*:*:*:*:*:*:*", "matchCriteriaId": "0B7903F0-75CF-4A2D-98CF-9BBC3B4CF783", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "83D1E184-9375-4C10-A2B4-D62D92D6BEB7", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.15:*:*:*:*:*:*:*", "matchCriteriaId": "D0D941F0-64E1-43E9-8E10-214302A02F13", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.16:*:*:*:*:*:*:*", "matchCriteriaId": "836E5299-455C-4E14-9261-654BC730E192", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.17:*:*:*:*:*:*:*", "matchCriteriaId": "BA2C9756-3DA2-4A65-B171-6828A85D6663", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.18:*:*:*:*:*:*:*", "matchCriteriaId": "67255DA8-8722-4777-A278-11FD07266CB5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.19:*:*:*:*:*:*:*", "matchCriteriaId": "C60F2518-2DB1-4C1D-B226-CD58D819B6F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.20:*:*:*:*:*:*:*", "matchCriteriaId": "9395E6C3-9541-4174-A027-E77B9CDCB850", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.21:*:*:*:*:*:*:*", "matchCriteriaId": "EA3E52D7-00D2-4E47-B75F-31D13DD923DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.22:*:*:*:*:*:*:*", "matchCriteriaId": "E0385069-D41F-4C0A-89C8-A4D876E6C24C", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.23:*:*:*:*:*:*:*", "matchCriteriaId": "7139E00C-D90B-4C3D-8DE5-A2B5BAB7FF62", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.24:*:*:*:*:*:*:*", "matchCriteriaId": "47B9DAFD-D058-4339-847D-78B852836B7E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.25:*:*:*:*:*:*:*", "matchCriteriaId": "6A629902-AFD6-456A-9756-B0D0E5ADE3AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.0.26:*:*:*:*:*:*:*", "matchCriteriaId": "B070591B-3CEF-4656-B344-0687A3A2790C", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "88080BEB-3954-4C30-8040-3B88A76CECB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.0:beta0001:*:*:*:*:*:*", "matchCriteriaId": "73E87619-DD84-4F22-98C2-C182FFB0ECC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.0:beta0002:*:*:*:*:*:*", "matchCriteriaId": "6D12D23A-AFED-46BA-8128-3CD49AA095EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "2C742DB8-EB27-485C-8945-B4FADAD89768", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "2BBEA447-30CF-496C-A811-3E83AA2924EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "55AF3F15-D74E-4BE2-B4CA-52B5D69F6C6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "B682943A-529A-46FF-90F7-7CD7B0068E6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "CF472ECF-6878-4B78-AE99-52D99FDF28F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "587E9EF9-93A5-4C93-8992-52400DD104FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.7:*:*:*:*:*:*:*", "matchCriteriaId": "3FDCD0FB-332A-4636-9EF8-6F4BE5D00723", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.12:*:*:*:*:*:*:*", "matchCriteriaId": "D1C87BC0-2C2D-4007-B36C-3A39A32567D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.1.13:*:*:*:*:*:*:*", "matchCriteriaId": "85B70D7E-56EC-4AE2-9DC9-875E454CC35E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "2FD7E8CF-260F-4884-84A5-316E0DFC8F02", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.0:beta0001:*:*:*:*:*:*", "matchCriteriaId": "D0546545-0137-4C1D-B91C-74A74A3B6702", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "EF5D978C-92B9-47B0-945E-23C697E8BA42", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "906D5A61-03D6-4CAA-A4F4-867CBC833BD9", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "A7CFB75C-5139-436E-912C-8488EA2F36AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "446499E9-DD4A-44ED-93EE-5B5B70B0DC0D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "122B5129-E2A7-4381-B79B-911CE57D7271", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "5C9E2762-C1E5-4E0C-AD35-BD700B3E26EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "4F6B1A53-53C7-44EC-9DDB-8C9DC9826BEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.9:*:*:*:*:*:*:*", "matchCriteriaId": "F432E48A-2DBD-4DB0-B797-E176903EC8BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "0D0CEEC1-8BAE-4448-A8BD-F7A2ED840C5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.11:*:*:*:*:*:*:*", "matchCriteriaId": "BCDD9154-8D3B-4C1E-B0B0-62ABFF8C0C6E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.15:*:*:*:*:*:*:*", "matchCriteriaId": "F43A4EF3-AD9E-4B51-8425-FA37000C4CD3", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.16:*:*:*:*:*:*:*", "matchCriteriaId": "485570D8-D260-490F-920E-62F71F445F67", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.17:*:*:*:*:*:*:*", "matchCriteriaId": "6577AF07-27C9-45A0-93A2-F02CD3C147F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.19:*:*:*:*:*:*:*", "matchCriteriaId": "F1408070-501E-4E31-961A-C1EE8783B1CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.20:*:*:*:*:*:*:*", "matchCriteriaId": "A47A3F1A-5AE2-49DC-B0D6-6499D60A9519", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.21:*:*:*:*:*:*:*", "matchCriteriaId": "6010FDC3-D02C-454C-87B2-EF47AF054A94", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.22:*:*:*:*:*:*:*", "matchCriteriaId": "E11B45F8-E4DC-40DE-991D-35B0EFF36120", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.23:*:*:*:*:*:*:*", "matchCriteriaId": "75BB64B1-2DBB-4BDD-AF28-8300997E9E13", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.2.24:*:*:*:*:*:*:*", "matchCriteriaId": "E271A37D-C69F-4AE1-B3EA-1AD0BA658384", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "3144E0C4-8CDF-4018-9050-E518436F1AC9", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.0:beta0001:*:*:*:*:*:*", "matchCriteriaId": "41EBFA72-2020-455A-8046-98E6739529FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.0:beta0002:*:*:*:*:*:*", "matchCriteriaId": "B14E4BF7-C8F9-459F-B53E-63EE835072F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "406EF20A-5751-48C7-BE49-1E2BACDF446F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "2B994380-E4C4-446A-BDE2-B8F2325BC901", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "CC82DF99-445F-4E2A-AE71-AE6AB198D570", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "55217D26-037B-4739-94F8-F95FCFB9AF94", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "29960FBF-9019-4C28-9DAE-374850E67968", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "2674D3B5-D177-4BA9-A3A4-198493E288BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "9B99EFBD-9D9A-4678-B042-22595C20C00F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.9:*:*:*:*:*:*:*", "matchCriteriaId": "BDE41FE9-0C20-4074-825E-9007E2358D48", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.10:*:*:*:*:*:*:*", "matchCriteriaId": "03A3D3E1-B1D0-4ABC-9B87-C02EE51F8A3F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.11:*:*:*:*:*:*:*", "matchCriteriaId": "F2E5E851-7737-406A-9CB6-22EDD6E80FFB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.12:*:*:*:*:*:*:*", "matchCriteriaId": "0942CD86-FDB4-4716-9C53-5EF490837777", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.14:*:*:*:*:*:*:*", "matchCriteriaId": "2BACDD08-414D-49A9-B559-867757C248FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.15:*:*:*:*:*:*:*", "matchCriteriaId": "F272B963-D4D4-468A-8BCC-944999086776", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.16:*:*:*:*:*:*:*", "matchCriteriaId": "1DD582AA-2171-4AED-9C95-F17705ADCD72", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.17:*:*:*:*:*:*:*", "matchCriteriaId": "9C3C3AE1-F578-4AA1-9DBA-EDD4F2C58904", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.18:*:*:*:*:*:*:*", "matchCriteriaId": "FD43A779-2AD9-4FC3-94B1-46C446F48975", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.19:*:*:*:*:*:*:*", "matchCriteriaId": "675DEEE8-53B9-4356-8440-1EF7BB70A828", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.20:*:*:*:*:*:*:*", "matchCriteriaId": "47726008-9429-4830-950B-6606C28ED148", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.21:*:*:*:*:*:*:*", "matchCriteriaId": "AB7A590A-8C38-40D7-AF7A-33BC18BB1C10", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.22:*:*:*:*:*:*:*", "matchCriteriaId": "C16F4565-1CFB-45F5-9D51-40EFB4C7B519", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.24:*:*:*:*:*:*:*", "matchCriteriaId": "C4CF217D-627F-4C4E-AE8D-5A1E618EFF35", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.25:*:*:*:*:*:*:*", "matchCriteriaId": "4DC6E8A0-55BE-49A9-9CC2-36E02C9F38A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.26:*:*:*:*:*:*:*", "matchCriteriaId": "A5E7B064-DF20-43D3-9C4D-B515A6D47A02", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.3.27:*:*:*:*:*:*:*", "matchCriteriaId": "0EBEAE34-DBA8-4774-910A-AF7021B691AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "9A1A66B5-9F14-49CE-95D6-A64A6D4EDE72", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.0:beta0001:*:*:*:*:*:*", "matchCriteriaId": "E24F7B24-09E9-4D62-BFA3-012AD2D55449", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.0:beta0002:*:*:*:*:*:*", "matchCriteriaId": "B32E1BDE-D9CD-4940-9D70-FEF50EA828A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "B0E29513-24FF-4547-A44B-997C51D6C04E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "AC2F88CA-1336-4593-B5BD-1FCE93D41373", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "A1751D91-3964-4783-9413-A9A526369A38", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "B6C54175-16D3-4D83-AC87-7BF010AE969B", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "2BAC6499-C9D2-4508-944D-91ECD7C885E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "F32BF320-5A7E-428F-87BA-4665CFDAB094", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "452BFE20-AF6A-4B2F-A324-18AF2D9867D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.9:*:*:*:*:*:*:*", "matchCriteriaId": "0BFEB77D-03C6-4195-B585-4F25B0C097D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.10:*:*:*:*:*:*:*", "matchCriteriaId": "22ED8747-0547-47D2-94D9-10EBD3AA0379", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.11:*:*:*:*:*:*:*", "matchCriteriaId": "ACD787C8-254A-44B7-A932-CC96425DF7F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.12:*:*:*:*:*:*:*", "matchCriteriaId": "F43BEB7C-FAAF-4AC0-B848-139E82824997", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.13:*:*:*:*:*:*:*", "matchCriteriaId": "783749E9-2B76-4EDF-8A7F-0C18168B0BF0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.14:*:*:*:*:*:*:*", "matchCriteriaId": "11718EB5-44AE-4C4B-95EE-750C7145199C", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.4.15:*:*:*:*:*:*:*", "matchCriteriaId": "68958940-C6DF-4723-8F63-077B70DFBC81", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "9C4A9DEE-BBC4-4FF5-AC64-49DD34F2FF6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "11FBBD45-633F-4D05-8406-AA42C9FF5FC7", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "17AFB7C9-B2AF-4F0C-9057-6496BFBAE361", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.5:*:*:*:*:*:*:*", "matchCriteriaId": "06B22281-05BA-4367-A572-0FBFE9AE32FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.6:*:*:*:*:*:*:*", "matchCriteriaId": "EAC9D0BC-9E78-4D18-9948-405361BEA09E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.7:*:*:*:*:*:*:*", "matchCriteriaId": "118FC49A-5541-47C9-AD3F-079C07D1D162", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.8:*:*:*:*:*:*:*", "matchCriteriaId": "7BE0126B-89FD-4165-BCA7-FACE36D6A9C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.5.9:*:*:*:*:*:*:*", "matchCriteriaId": "3541A472-7A56-46C8-B6FE-D4EA3BEB9E65", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "88638E48-31FC-4A7E-ADC5-0F42ADDED546", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "04F6ACED-B445-42D1-9767-197907797EE9", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "0E3D9911-FA92-4B88-87E3-26CE969B9068", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.2:*:*:*:*:*:*:*", "matchCriteriaId": "7D18466E-39C6-4E16-80B3-C8973A4B04B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.3:*:*:*:*:*:*:*", "matchCriteriaId": "BB6450B5-3291-4ECA-8E30-CD1526D1A3E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.4:*:*:*:*:*:*:*", "matchCriteriaId": "5457EBE3-8996-4B52-9991-54D00A2F2CE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.5:*:*:*:*:*:*:*", "matchCriteriaId": "DE419CB7-DF77-42C1-94C2-6690067262CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.6:*:*:*:*:*:*:*", "matchCriteriaId": "C8412D07-1B9F-4AFB-B716-DA8FEC96711E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.7:*:*:*:*:*:*:*", "matchCriteriaId": "2C684F69-DACC-4DD1-8100-CB70BFDB3578", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.8:*:*:*:*:*:*:*", "matchCriteriaId": "BBDBE325-FEC3-4644-864C-CDA9C957EDF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.9:*:*:*:*:*:*:*", "matchCriteriaId": "827BD351-4C1A-469A-BF80-59EC0C935682", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.10:*:*:*:*:*:*:*", "matchCriteriaId": "B8473CB4-1170-44E6-ADD2-E468868CBA5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.11:*:*:*:*:*:*:*", "matchCriteriaId": "345D8C8D-E1CF-4DC2-9E90-0A71749B57E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.12:*:*:*:*:*:*:*", "matchCriteriaId": "FE34D1A7-7D13-456C-B09A-04A247A890BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.13:*:*:*:*:*:*:*", "matchCriteriaId": "7CA5325C-FE3A-4857-B875-76628BF2C05A", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.14:*:*:*:*:*:*:*", "matchCriteriaId": "E8E62EBE-FBCD-4817-8121-34FD5DF1B2CA", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.15:*:*:*:*:*:*:*", "matchCriteriaId": "E421D1DF-DCB8-4426-9D64-B855B33BE824", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.16:*:*:*:*:*:*:*", "matchCriteriaId": "E912C038-5CE7-494E-9C06-45A6793D3975", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.17:*:*:*:*:*:*:*", "matchCriteriaId": "CF2B0AD8-895E-449E-8050-AF73A0677FFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.7.18:*:*:*:*:*:*:*", "matchCriteriaId": "7AD0918D-165E-4313-BCB8-0391FFE6B163", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "55371420-7E0F-4E8B-8D15-C46A4E4A6433", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "E35FEB7F-E65E-4F90-B92D-B9CBED5ECDFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "0A6D0008-8729-47D5-9080-D4415D8A5A23", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.3:*:*:*:*:*:*:*", "matchCriteriaId": "24D0608F-0836-44C5-A792-B20F432F0648", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.4:*:*:*:*:*:*:*", "matchCriteriaId": "E7076A3E-55DB-4B47-8FBB-1CA38993FDBB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.5:*:*:*:*:*:*:*", "matchCriteriaId": "CB1CAA02-BEC7-4F3B-9367-FD38BAB89ECF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.6:*:*:*:*:*:*:*", "matchCriteriaId": "C55BEF8A-1611-4968-9971-79B1CE846700", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.7:*:*:*:*:*:*:*", "matchCriteriaId": "94CC9340-4C49-42FF-9A84-2B4578F7E0EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.8:*:*:*:*:*:*:*", "matchCriteriaId": "0D72C82C-B1CA-4F4E-A46B-5D85919F15F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.8.9:*:*:*:*:*:*:*", "matchCriteriaId": "9AB386D5-5E18-4E64-9F55-DE286FDE93FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "2055F65D-91A4-4F8D-B57B-FF26DF63719B", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.10.0:*:*:*:*:*:*:*", "matchCriteriaId": "186DF1E5-E4B3-40D4-A196-5EC015230C17", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.10.1:*:*:*:*:*:*:*", "matchCriteriaId": "8B873D81-B729-4D86-AFB7-60B547BF0635", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.0:*:*:*:*:*:*:*", "matchCriteriaId": "1B42D5AD-1205-4D02-8FBC-9F6BFEA8352A", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.1:*:*:*:*:*:*:*", "matchCriteriaId": "F2582EE1-59DD-4CB4-8783-5B4E840C3A1C", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.2:*:*:*:*:*:*:*", "matchCriteriaId": "C4E8588A-F2B3-4446-82DE-8FD7472B78BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.3:*:*:*:*:*:*:*", "matchCriteriaId": "3F1FAFA4-F6B0-4D93-8FCF-EDC9D5399909", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.4:*:*:*:*:*:*:*", "matchCriteriaId": "70245FE9-9C1D-47C0-BCF5-623E10796F5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.5:*:*:*:*:*:*:*", "matchCriteriaId": "F787AA4B-4E5A-4B95-9BB6-AF703792214D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.6:*:*:*:*:*:*:*", "matchCriteriaId": "4478F7D2-D102-4B8B-9CB0-3B33F872E250", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.7:*:*:*:*:*:*:*", "matchCriteriaId": "EEA167C5-BE25-42C0-90B6-A9CF17AE953F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.9:*:*:*:*:*:*:*", "matchCriteriaId": "EFE6779F-B1A8-4D0D-9E0D-9BFE8D210F97", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.10:*:*:*:*:*:*:*", "matchCriteriaId": "A605F79A-41C4-49DD-9F57-030E23D954CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.11:*:*:*:*:*:*:*", "matchCriteriaId": "BC19DCB4-0C24-4872-88BE-F32FEE2C28F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.12:*:*:*:*:*:*:*", "matchCriteriaId": "0EE8332E-FB0E-4EDD-A4AC-E7299EAC99A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.13:*:*:*:*:*:*:*", "matchCriteriaId": "27DE188D-2476-4D47-B1EA-F5994B87D9B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.14:*:*:*:*:*:*:*", "matchCriteriaId": "0BD8B805-E383-4A8E-84E6-C8C7FF95EB9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.15:*:*:*:*:*:*:*", "matchCriteriaId": "F746D068-17F1-4910-B3C2-93E724537E38", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.16:*:*:*:*:*:*:*", "matchCriteriaId": "F4580D06-34A1-41DD-B761-0A5329FDEFD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.17:*:*:*:*:*:*:*", "matchCriteriaId": "02658783-BAFF-4378-8A0B-F69AFF1F6D63", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.11.18:*:*:*:*:*:*:*", "matchCriteriaId": "7D1EE68B-F702-4FE5-8C00-FCC9356A1BFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.0:*:*:*:*:*:*:*", "matchCriteriaId": "D1F64A21-FCDB-4F75-A40C-E33B4985FF09", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.1:*:*:*:*:*:*:*", "matchCriteriaId": "4AFB2BA6-455F-4C7E-90DE-DDEEA0D35A05", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.2:*:*:*:*:*:*:*", "matchCriteriaId": "BC3CF216-C004-41E2-844B-755BDD3B445F", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.3:*:*:*:*:*:*:*", "matchCriteriaId": "41105AAF-DA38-4E88-8D98-AFF6992E2C23", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.4:*:*:*:*:*:*:*", "matchCriteriaId": "E34F53D1-0EEB-4149-8311-F100AE08990E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.5:*:*:*:*:*:*:*", "matchCriteriaId": "81E90449-98FB-499A-8417-9130E917C2B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.6:*:*:*:*:*:*:*", "matchCriteriaId": "D11979C6-A969-472B-9599-63D030E02CA1", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.7:*:*:*:*:*:*:*", "matchCriteriaId": "63BCDBCF-2BB9-4B5B-92FD-2DCEE823316D", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.12.9:*:*:*:*:*:*:*", "matchCriteriaId": "ED0B8225-BC02-47D7-B036-E819DEDD982E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.0:*:*:*:*:*:*:*", "matchCriteriaId": "64E262C3-BA59-4684-ADB6-4AB54008A6B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.1:*:*:*:*:*:*:*", "matchCriteriaId": "906F638C-46C4-42B4-B942-11A49BFEC731", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.2:*:*:*:*:*:*:*", "matchCriteriaId": "7F37B02D-F3B8-4BD5-9F03-957BC5E98250", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.3:*:*:*:*:*:*:*", "matchCriteriaId": "4D740A4B-B19A-400B-AA35-B27E79628BAA", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.5:*:*:*:*:*:*:*", "matchCriteriaId": "E885E7BF-E83F-4225-9A7D-92856304FB92", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.6:*:*:*:*:*:*:*", "matchCriteriaId": "B4DFB9A5-4EA6-4CC1-BB21-0837AD1B443A", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.7:*:*:*:*:*:*:*", "matchCriteriaId": "ACD5D129-7CB1-4265-B01A-845A3151F926", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.9:*:*:*:*:*:*:*", "matchCriteriaId": "922EEEB7-F909-4FC3-B594-D1C2F8E186C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.13.10:*:*:*:*:*:*:*", "matchCriteriaId": "9D860E8A-6F52-4D60-A8AA-628A74FF7365", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.14.1:*:*:*:*:*:*:*", "matchCriteriaId": "029BB83B-0CE9-42D6-B457-57CC8C376F4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.14.15:*:*:*:*:*:*:*", "matchCriteriaId": "FD362A49-EA6B-426D-8972-EE125DAF6482", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.14.159:*:*:*:*:*:*:*", "matchCriteriaId": "B4F86EC1-1BD0-4960-8B5C-A42F7C696099", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.14.1592:*:*:*:*:*:*:*", "matchCriteriaId": "FD8B2CF6-2B31-42CE-9AB8-58FC6A76F768", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.14.15926:*:*:*:*:*:*:*", "matchCriteriaId": "9ECB6B08-1C12-4DA1-A13F-9F3BF90C818C", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.15.0:*:*:*:*:*:*:*", "matchCriteriaId": "748FB71C-DB3A-4BED-BAFD-C0F5422724E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.15.1:*:*:*:*:*:*:*", "matchCriteriaId": "20977EE4-0D05-4602-B182-661A7480DD24", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.15.2:*:*:*:*:*:*:*", "matchCriteriaId": "BA08512B-0587-4B4B-8487-0905091F07DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:octopus:octopus_server:3.15.3:*:*:*:*:*:*:*", "matchCriteriaId": "EA6530D6-A7B3-47C4-9DFD-DFF5F9DD28C6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In Octopus Deploy 3.x before 3.15.4, an authenticated user with PackagePush permission to upload packages could upload a maliciously crafted NuGet package, potentially overwriting other packages or modifying system files. This is a directory traversal in the PackageId value."}, {"lang": "es", "value": "En Octopus Deploy versi\u00f3n 3.x anterior a 3.15.4, un usuario autenticado con permiso PackagePush para cargar paquetes podr\u00eda cargar un paquete NuGet creado con fines maliciosos, sobrescribiendo potencialmente otros paquetes o modificando archivos del sistema. Esto es un salto de directorio en el valor PackageId."}], "id": "CVE-2017-11348", "lastModified": "2025-04-20T01:37:25.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 6.3, "confidentialityImpact": "NONE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:C/A:N", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 2.1, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-07-17T13:18:21.203", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/OctopusDeploy/Issues/issues/3654"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://github.com/OctopusDeploy/Issues/issues/3654"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}