Vulnerability Details CVE-2021-26557
When Octopus Tentacle is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.4
Products affected by CVE-2021-26557
-
cpe:2.3:a:octopus:tentacle:3.15.4
-
cpe:2.3:a:octopus:tentacle:3.15.5
-
cpe:2.3:a:octopus:tentacle:3.15.6
-
cpe:2.3:a:octopus:tentacle:3.15.7
-
cpe:2.3:a:octopus:tentacle:3.15.8
-
cpe:2.3:a:octopus:tentacle:3.16.0
-
cpe:2.3:a:octopus:tentacle:3.16.1
-
cpe:2.3:a:octopus:tentacle:3.16.2
-
cpe:2.3:a:octopus:tentacle:3.16.3
-
cpe:2.3:a:octopus:tentacle:3.16.4
-
cpe:2.3:a:octopus:tentacle:3.17.0
-
cpe:2.3:a:octopus:tentacle:3.18.0
-
cpe:2.3:a:octopus:tentacle:3.19.0
-
cpe:2.3:a:octopus:tentacle:3.19.1
-
cpe:2.3:a:octopus:tentacle:3.19.2
-
cpe:2.3:a:octopus:tentacle:3.20.0
-
cpe:2.3:a:octopus:tentacle:3.20.1
-
cpe:2.3:a:octopus:tentacle:3.21.0
-
cpe:2.3:a:octopus:tentacle:3.22.0
-
cpe:2.3:a:octopus:tentacle:3.22.1
-
cpe:2.3:a:octopus:tentacle:3.22.2
-
cpe:2.3:a:octopus:tentacle:3.23.0
-
cpe:2.3:a:octopus:tentacle:3.23.1
-
cpe:2.3:a:octopus:tentacle:3.23.2
-
cpe:2.3:a:octopus:tentacle:3.24.0
-
cpe:2.3:a:octopus:tentacle:3.25.0
-
cpe:2.3:a:octopus:tentacle:4.0.0
-
cpe:2.3:a:octopus:tentacle:4.0.1
-
cpe:2.3:a:octopus:tentacle:4.0.2
-
cpe:2.3:a:octopus:tentacle:4.0.3
-
cpe:2.3:a:octopus:tentacle:4.0.4
-
cpe:2.3:a:octopus:tentacle:4.0.5
-
cpe:2.3:a:octopus:tentacle:4.0.6
-
cpe:2.3:a:octopus:tentacle:4.0.7
-
cpe:2.3:a:octopus:tentacle:5.0.0
-
cpe:2.3:a:octopus:tentacle:5.0.1
-
cpe:2.3:a:octopus:tentacle:5.0.10
-
cpe:2.3:a:octopus:tentacle:5.0.11
-
cpe:2.3:a:octopus:tentacle:5.0.12
-
cpe:2.3:a:octopus:tentacle:5.0.13
-
cpe:2.3:a:octopus:tentacle:5.0.14
-
cpe:2.3:a:octopus:tentacle:5.0.15
-
cpe:2.3:a:octopus:tentacle:5.0.16
-
cpe:2.3:a:octopus:tentacle:5.0.2
-
cpe:2.3:a:octopus:tentacle:5.0.3
-
cpe:2.3:a:octopus:tentacle:5.0.4
-
cpe:2.3:a:octopus:tentacle:5.0.5
-
cpe:2.3:a:octopus:tentacle:5.0.6
-
cpe:2.3:a:octopus:tentacle:5.0.7
-
cpe:2.3:a:octopus:tentacle:5.0.8
-
cpe:2.3:a:octopus:tentacle:5.0.9
-
cpe:2.3:a:octopus:tentacle:6.0.0
-
cpe:2.3:a:octopus:tentacle:6.0.135
-
cpe:2.3:a:octopus:tentacle:6.0.170
-
cpe:2.3:a:octopus:tentacle:6.0.171
-
cpe:2.3:a:octopus:tentacle:6.0.174
-
cpe:2.3:a:octopus:tentacle:6.0.175
-
cpe:2.3:a:octopus:tentacle:6.0.176
-
cpe:2.3:a:octopus:tentacle:6.0.193
-
cpe:2.3:a:octopus:tentacle:6.0.194
-
cpe:2.3:a:octopus:tentacle:6.0.196
-
cpe:2.3:a:octopus:tentacle:6.0.205
-
cpe:2.3:a:octopus:tentacle:6.0.207
-
cpe:2.3:a:octopus:tentacle:6.0.215
-
cpe:2.3:a:octopus:tentacle:6.0.218
-
cpe:2.3:a:octopus:tentacle:6.0.228
-
cpe:2.3:a:octopus:tentacle:6.0.230
-
cpe:2.3:a:octopus:tentacle:6.0.231
-
cpe:2.3:a:octopus:tentacle:6.0.233
-
cpe:2.3:a:octopus:tentacle:6.0.236
-
cpe:2.3:a:octopus:tentacle:6.0.240
-
cpe:2.3:a:octopus:tentacle:6.0.243
-
cpe:2.3:a:octopus:tentacle:6.0.245
-
cpe:2.3:a:octopus:tentacle:6.0.246
-
cpe:2.3:a:octopus:tentacle:6.0.247
-
cpe:2.3:a:octopus:tentacle:6.0.248
-
cpe:2.3:a:octopus:tentacle:6.0.250
-
cpe:2.3:a:octopus:tentacle:6.0.251
-
cpe:2.3:a:octopus:tentacle:6.0.257
-
cpe:2.3:a:octopus:tentacle:6.0.258
-
cpe:2.3:a:octopus:tentacle:6.0.260
-
cpe:2.3:a:octopus:tentacle:6.0.263
-
cpe:2.3:a:octopus:tentacle:6.0.267
-
cpe:2.3:a:octopus:tentacle:6.0.269
-
cpe:2.3:a:octopus:tentacle:6.0.270
-
cpe:2.3:a:octopus:tentacle:6.0.273
-
cpe:2.3:a:octopus:tentacle:6.0.275
-
cpe:2.3:a:octopus:tentacle:6.0.276
-
cpe:2.3:a:octopus:tentacle:6.0.277
-
cpe:2.3:a:octopus:tentacle:6.0.283
-
cpe:2.3:a:octopus:tentacle:6.0.285
-
cpe:2.3:a:octopus:tentacle:6.0.286
-
cpe:2.3:a:octopus:tentacle:6.0.287
-
cpe:2.3:a:octopus:tentacle:6.0.288
-
cpe:2.3:a:octopus:tentacle:6.0.289
-
cpe:2.3:a:octopus:tentacle:6.0.291
-
cpe:2.3:a:octopus:tentacle:6.0.294
-
cpe:2.3:a:octopus:tentacle:6.0.295
-
cpe:2.3:a:octopus:tentacle:6.0.303
-
cpe:2.3:a:octopus:tentacle:6.0.304
-
cpe:2.3:a:octopus:tentacle:6.0.306
-
cpe:2.3:a:octopus:tentacle:6.0.307
-
cpe:2.3:a:octopus:tentacle:6.0.308
-
cpe:2.3:a:octopus:tentacle:6.0.309
-
cpe:2.3:a:octopus:tentacle:6.0.310
-
cpe:2.3:a:octopus:tentacle:6.0.311
-
cpe:2.3:a:octopus:tentacle:6.0.312
-
cpe:2.3:a:octopus:tentacle:6.0.313
-
cpe:2.3:a:octopus:tentacle:6.0.314
-
cpe:2.3:a:octopus:tentacle:6.0.315
-
cpe:2.3:a:octopus:tentacle:6.0.316
-
cpe:2.3:a:octopus:tentacle:6.0.317
-
cpe:2.3:a:octopus:tentacle:6.0.319
-
cpe:2.3:a:octopus:tentacle:6.0.320
-
cpe:2.3:a:octopus:tentacle:6.0.323
-
cpe:2.3:a:octopus:tentacle:6.0.325
-
cpe:2.3:a:octopus:tentacle:6.0.329
-
cpe:2.3:a:octopus:tentacle:6.0.332
-
cpe:2.3:a:octopus:tentacle:6.0.333
-
cpe:2.3:a:octopus:tentacle:6.0.334
-
cpe:2.3:a:octopus:tentacle:6.0.337
-
cpe:2.3:a:octopus:tentacle:6.0.339
-
cpe:2.3:a:octopus:tentacle:6.0.340
-
cpe:2.3:a:octopus:tentacle:6.0.341
-
cpe:2.3:a:octopus:tentacle:6.0.342
-
cpe:2.3:a:octopus:tentacle:6.0.343
-
cpe:2.3:a:octopus:tentacle:6.0.344
-
cpe:2.3:a:octopus:tentacle:6.0.352
-
cpe:2.3:a:octopus:tentacle:6.0.353
-
cpe:2.3:a:octopus:tentacle:6.0.356
-
cpe:2.3:a:octopus:tentacle:6.0.359
-
cpe:2.3:a:octopus:tentacle:6.0.364
-
cpe:2.3:a:octopus:tentacle:6.0.365
-
cpe:2.3:a:octopus:tentacle:6.0.368
-
cpe:2.3:a:octopus:tentacle:6.0.370
-
cpe:2.3:a:octopus:tentacle:6.0.371
-
cpe:2.3:a:octopus:tentacle:6.0.372
-
cpe:2.3:a:octopus:tentacle:6.0.373
-
cpe:2.3:a:octopus:tentacle:6.0.374
-
cpe:2.3:a:octopus:tentacle:6.0.375
-
cpe:2.3:a:octopus:tentacle:6.0.376
-
cpe:2.3:a:octopus:tentacle:6.0.377
-
cpe:2.3:a:octopus:tentacle:6.0.380
-
cpe:2.3:a:octopus:tentacle:6.0.381
-
cpe:2.3:a:octopus:tentacle:6.0.383
-
cpe:2.3:a:octopus:tentacle:6.0.386
-
cpe:2.3:a:octopus:tentacle:6.0.388
-
cpe:2.3:a:octopus:tentacle:6.0.389
-
cpe:2.3:a:octopus:tentacle:6.0.390
-
cpe:2.3:a:octopus:tentacle:6.0.394
-
cpe:2.3:a:octopus:tentacle:6.0.397
-
cpe:2.3:a:octopus:tentacle:6.0.403
-
cpe:2.3:a:octopus:tentacle:6.0.404
-
cpe:2.3:a:octopus:tentacle:6.0.405
-
cpe:2.3:a:octopus:tentacle:6.0.408
-
cpe:2.3:a:octopus:tentacle:6.0.409
-
cpe:2.3:a:octopus:tentacle:6.0.423
-
cpe:2.3:a:octopus:tentacle:6.0.424
-
cpe:2.3:a:octopus:tentacle:6.0.425
-
cpe:2.3:a:octopus:tentacle:6.0.426
-
cpe:2.3:a:octopus:tentacle:6.0.429
-
cpe:2.3:a:octopus:tentacle:6.0.435
-
cpe:2.3:a:octopus:tentacle:6.0.436
-
cpe:2.3:a:octopus:tentacle:6.0.437
-
cpe:2.3:a:octopus:tentacle:6.0.440
-
cpe:2.3:a:octopus:tentacle:6.0.443
-
cpe:2.3:a:octopus:tentacle:6.0.444
-
cpe:2.3:a:octopus:tentacle:6.0.445
-
cpe:2.3:a:octopus:tentacle:6.0.446
-
cpe:2.3:a:octopus:tentacle:6.0.447
-
cpe:2.3:a:octopus:tentacle:6.0.448
-
cpe:2.3:a:octopus:tentacle:6.0.449
-
cpe:2.3:a:octopus:tentacle:6.0.450
-
cpe:2.3:a:octopus:tentacle:6.0.451
-
cpe:2.3:a:octopus:tentacle:6.0.452
-
cpe:2.3:a:octopus:tentacle:6.0.453
-
cpe:2.3:a:octopus:tentacle:6.0.454
-
cpe:2.3:a:octopus:tentacle:6.0.455
-
cpe:2.3:a:octopus:tentacle:6.0.456
-
cpe:2.3:a:octopus:tentacle:6.0.460
-
cpe:2.3:a:octopus:tentacle:6.0.461
-
cpe:2.3:a:octopus:tentacle:6.0.462
-
cpe:2.3:a:octopus:tentacle:6.0.463
-
cpe:2.3:a:octopus:tentacle:6.0.464
-
cpe:2.3:a:octopus:tentacle:6.0.466
-
cpe:2.3:a:octopus:tentacle:6.0.477
-
cpe:2.3:a:octopus:tentacle:6.0.478
-
cpe:2.3:a:octopus:tentacle:6.0.479
-
cpe:2.3:a:octopus:tentacle:6.0.480
-
cpe:2.3:a:octopus:tentacle:6.0.481
-
cpe:2.3:a:octopus:tentacle:6.0.486