cvedb.io
CVE-2022-2780
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2022-10-14T07:15:08.947 · Last modified 2026-06-17T04:42:34.180

Summary

In affected versions of Octopus Server it is possible to use the Git Connectivity test function on the VCS project to initiate an SMB request resulting in the potential for an NTLM relay attack.

Affected products

octopus — octopus_server

Does this affect you?

Add your gear to cvedb and we'll alert you only when octopus ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.