{"containers":{"cna":{"affected":[{"product":"Octopus Server","vendor":"Octopus Deploy","versions":[{"lessThan":"unspecified","status":"affected","version":"2022.1.1495","versionType":"custom"},{"lessThan":"2022.1.2647","status":"affected","version":"unspecified","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"In Octopus Server after version 2022.1.1495 and before 2022.1.2647 if private spaces were enabled via the experimental feature flag all new users would have access to the Script Console within their private space."}],"problemTypes":[{"descriptions":[{"description":"Broken Access Control","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2022-06-12T23:50:09.000Z","orgId":"6f4f8c89-ef06-4bae-a2a5-6734ddf76272","shortName":"Octopus"},"references":[{"tags":["x_refsource_MISC"],"url":"https://advisories.octopus.com/post/2022/sa2022-05/"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"security@octopus.com","ID":"CVE-2022-2013","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Octopus Server","version":{"version_data":[{"version_affected":">=","version_value":"2022.1.1495"},{"version_affected":"<","version_value":"2022.1.2647"}]}}]},"vendor_name":"Octopus Deploy"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"In Octopus Server after version 2022.1.1495 and before 2022.1.2647 if private spaces were enabled via the experimental feature flag all new users would have access to the Script Console within their private space."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Broken Access Control"}]}]},"references":{"reference_data":[{"name":"https://advisories.octopus.com/post/2022/sa2022-05/","refsource":"MISC","url":"https://advisories.octopus.com/post/2022/sa2022-05/"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T00:24:43.695Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://advisories.octopus.com/post/2022/sa2022-05/"}]}]},"cveMetadata":{"assignerOrgId":"6f4f8c89-ef06-4bae-a2a5-6734ddf76272","assignerShortName":"Octopus","cveId":"CVE-2022-2013","datePublished":"2022-06-12T23:50:09.000Z","dateReserved":"2022-06-07T00:00:00.000Z","dateUpdated":"2024-08-03T00:24:43.695Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}