CVE-2024-2975

HIGH EPSS 30.7%

Published Apr 9, 20242y ago · Modified Jun 17, 20261w ago

7.5 CVSS 3.1

High

Published Apr 9, 2024 2y ago

Last Modified Jun 17, 2026 1w ago

Description

A race condition was identified through which privilege escalation was possible in certain configurations.

Base Score

7.5

Exploitability

1.6

Impact

5.9

Vector string

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector Network

Attack Complexity High

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

EPSS Exploit Probability

30.7% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

CWE-1223

Vendor	Product	Version	Range
octopus	octopus_server	*	≥0.9 – <2023.4.8432
octopus	octopus_server	*	≥2024.1.437 – <2024.1.12087
octopus	octopus_server	*	≥2024.2.101 – <2024.2.2075
linux	linux_kernel	*	any
microsoft	windows	*	any

advisories.octopus.com https://advisories.octopus.com/post/2024/sa2024-01/

Vendor Advisory

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.