ГлавнаяУязвимости → CVE-2025-0539
8.8высокая

CVE-2025-0539

Описание

In affected Microsoft Windows versions of Octopus Deploy, the server can be coerced into sending server-side requests that contain authentication material allowing a suitably positioned attacker to compromise the account running Octopus Server and potentially the host infrastructure itself.

Затрагиваемое ПО
Octopus Octopus serverMicrosoft Windows
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://advisories.octopus.com/post/2025/sa2025-06