Every CVE whose affected-product data names Octopus Tentacle, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-26557 — CVSS 7.8 (high): When Octopus Tentacle is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user…
CVE-2021-31822 — CVSS 7.8 (high): When Octopus Tentacle is installed on a Linux operating system, the systemd service file permissions are misconfigured. This could lead to…
CVE-2019-15508 — CVSS 6.5 (medium): In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited…
CVE-2021-31821 — CVSS 5.5 (medium): When the Windows Tentacle docker image starts up it logs all the commands that it runs along with the arguments, which writes the Octopus…