Lucene search
MicrosoftCVELIST:CVE-2019-1306HistorySep 11, 2019 - 9:25 p.m.
CVE-2019-1306
2019-09-1121:25:01
microsoft
www.cve.org
5
A remote code execution vulnerability exists when Azure DevOps Server (ADO) and Team Foundation Server (TFS) fail to validate input properly, aka ‘Azure DevOps and Team Foundation Server Remote Code Execution Vulnerability’.
CNA Affected
[
{
"product": "Team Foundation Server 2018",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 3.2"
}
]
},
{
"product": "Azure DevOps Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2019.0.1"
}
]
},
{
"product": "Azure DevOps Server 2019 Update 1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
}
]Related
mscve
mscve
Azure DevOps and Team Foundation Server Remote Code Execution Vulnerability
2019-09-10 07:00:00
prion
prion
Remote code execution
2019-09-11 22:15:00
cve
cve
CVE-2019-1306
2019-09-11 22:15:19
nvd
nvd
CVE-2019-1306
2019-09-11 22:15:19
zdi
zdi
nessus
nessus
kaspersky
kaspersky
KLA11554 Multiple vulnerabilities in Microsoft Developer tools
2019-09-10 00:00:00
qualysblog
qualysblog
threatpost
threatpost
Microsoft Addresses Two Zero-Days Under Active Attack
2019-09-10 19:54:07
talosblog
talosblog