Lucene search
MicrosoftCVELIST:CVE-2020-0700HistoryMar 12, 2020 - 3:48 p.m.
CVE-2020-0700
2020-03-1215:48:04
microsoft
www.cve.org
6
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka ‘Azure DevOps Server Cross-site Scripting Vulnerability’.
CNA Affected
[
{
"product": "Azure DevOps Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2019.0.1"
}
]
},
{
"product": "Team Foundation Server 2018",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 3.2"
},
{
"status": "affected",
"version": "Update 1.2"
}
]
},
{
"product": "Team Foundation Server",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2017 Update 3.1"
}
]
},
{
"product": "Azure DevOps Server 2019",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Update 1"
}
]
},
{
"product": "Azure DevOps Server 2019 Update 1.1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
}
]Related
nvd
nvd
CVE-2020-0700
2020-03-12 16:15:13
mscve
mscve
Azure DevOps Server Cross-site Scripting Vulnerability
2020-03-10 07:00:00
prion
prion
Cross site scripting
2020-03-12 16:15:00
cve
cve
CVE-2020-0700
2020-03-12 16:15:13
nessus
nessus
Security Updates for Microsoft Team Foundation Server (March 2020)
2020-03-10 00:00:00
kaspersky
kaspersky
KLA11682 Multiple vulnerabilities in Microsoft Developer Tools
2020-03-10 00:00:00