Lucene search
MicrosoftCVELIST:CVE-2019-1072HistoryJul 15, 2019 - 6:56 p.m.
CVE-2019-1072
2019-07-1518:56:20
microsoft
www.cve.org
1
A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input, aka ‘Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability’.
CNA Affected
[
{
"product": "Team Foundation Server 2012",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 4"
}
]
},
{
"product": "Team Foundation Server 2013 Update 5",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Team Foundation Server 2018",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 1.2"
},
{
"status": "affected",
"version": "Update 3.2"
}
]
},
{
"product": "Team Foundation Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2017 Update 3.1"
}
]
},
{
"product": "Team Foundation Server 2015",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 4.2"
}
]
},
{
"product": "Azure DevOps Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2019.0.1"
}
]
},
{
"product": "Team Foundation Server 2010",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "SP1 (x86)"
},
{
"status": "affected",
"version": "SP1 (x64)"
}
]
}
]Related
mscve
mscve
prion
prion
Remote code execution
2019-07-15 19:15:00
nvd
nvd
CVE-2019-1072
2019-07-15 19:15:17
cve
cve
CVE-2019-1072
2019-07-15 19:15:17
nessus
nessus
qualysblog
qualysblog
kaspersky
kaspersky
KLA11513 Multiple vulnerabilities in Microsoft Developer Tools
2019-07-09 00:00:00
threatpost
threatpost
Microsoft Patches A Pair of Zero-Days Under Active Attack
2019-07-09 20:04:36
talosblog
talosblog