CVE-2022-2528 Information

Description

In affected versions of Octopus Deploy it is possible to upload a package to built-in feed with insufficient permissions after re-indexing packages.

Reference

https://advisories.octopus.com/post/2022/sa2022-13/