Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

522 matches found

CNNVD
CNNVDadded 2024/07/09 12:0 a.m.4 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker exploits...

7.6CVSS6.8AI score0.01582EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/07/09 12:0 a.m.4 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker exploits...

7.6CVSS6.8AI score0.01582EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/07/09 12:0 a.m.4 views

PT-2024-4740 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to the Azure DevOps Server development software and is associated with the failure to take measures to protect the web page structure. Exploitation of this...

8.7CVSS6.7AI score0.01582EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/07/09 12:0 a.m.16 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (July 2024)

The Microsoft Team Foundation Server or Azure DevOps is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A session spoofing vulnerability exists. An attacker can exploit this to perform actions with the privileges of another user. CVE-2024-35266, CVE-2024-35267...

7.6CVSS5.6AI score0.01582EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 12:42 p.m.3 views

Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.annotation.azuretest (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSVadded 2024/06/25 12:42 p.m.5 views

MAL-2024-2338 Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.annotation.azuretest (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2024/06/14 12:0 a.m.4 views

The vulnerability of the Azure DevOps Server software, related to lack of access control, allows a hacker to execute arbitrary code.

The vulnerability of the Azure DevOps Server development tool is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS7.7AI score0.00847EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linuxadded 2024/05/10 7:36 p.m.47 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.10.5 security update

An update is now available for Red Hat OpenShift GitOps v1.10.5 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS7.2AI score0.01199EPSS
Exploits1References8
RedHat Linux
RedHat Linuxadded 2024/05/10 7:16 p.m.52 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.2 security update

An update is now available for Red Hat OpenShift GitOps v1.12.2 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS6.7AI score0.01199EPSS
Exploits1References14
RedHat Linux
RedHat Linuxadded 2024/05/10 7:6 p.m.45 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.4 security update

An update is now available for Red Hat OpenShift GitOps v1.11.4 for Argo CD UI and Console Plugin. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

7.5CVSS7.2AI score0.01199EPSS
Exploits1References10
Kitploit
Kitploitadded 2024/04/06 11:30 a.m.34 views

ADOKit - Azure DevOps Services Attack Toolkit

Azure DevOps Services Attack Toolkit - ADOKit is a toolkit that can be used to attack Azure DevOps Services by taking advantage of the available REST API. The tool allows the user to specify an attack module, along with specifying valid credentials API key or stolen authentication cookie for the...

7.8AI score
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2024/02/15 12:0 a.m.74 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (February 2024)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number...

7.5CVSS8.6AI score0.01359EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2024/02/15 12:0 a.m.4 views

The vulnerability of the Azure DevOps Server software lies in insufficient validation of input data, allowing a hacker to execute arbitrary code.

The vulnerability of the Azure DevOps Server software lies in insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS7.8AI score0.01359EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2024/02/13 6:15 p.m.28 views

CVE-2024-20667

Azure DevOps Server Remote Code Execution Vulnerability...

7.5CVSS7.9AI score0.01359EPSS
Exploits0References1
OSV
OSVadded 2024/02/13 6:15 p.m.3 views

CVE-2024-20667

Azure DevOps Server Remote Code Execution Vulnerability...

7.5CVSS5.9AI score0.01359EPSS
Exploits0References1
Prion
Prionadded 2024/02/13 6:15 p.m.28 views

Remote code execution

Azure DevOps Server Remote Code Execution Vulnerability...

4.6CVSS7.8AI score0.01359EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/02/13 6:2 p.m.216 views

CVE-2024-20667

CVE-2024-20667 is an Azure DevOps Server remote code execution vulnerability. Connected docs confirm it affects Azure DevOps Server versions including 2022.1, 2019.1.2, and 2020.1.2, with root cause described as insufficient input validation (per PT-2024-1652). The vulnerability enables remote co...

7.5CVSS8.1AI score0.01359EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/02/13 6:2 p.m.27 views

CVE-2024-20667 Azure DevOps Server Remote Code Execution Vulnerability

...

7.5CVSS7.9AI score0.01359EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/02/13 6:2 p.m.8 views

CVE-2024-20667 Azure DevOps Server Remote Code Execution Vulnerability

...

7.5CVSS7.5AI score0.01359EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2024/02/13 8:0 a.m.127 views

Azure DevOps Server Remote Code Execution Vulnerability

...

7.5CVSS7.3AI score0.01359EPSS
Exploits0
Rows per page
Query Builder