Lucene search
K

1393 matches found

Microsoft CVE
Microsoft CVE
added 2024/07/09 7:0 a.m.19 views

Azure DevOps Server Spoofing Vulnerability

...

7.6CVSS7.6AI score0.01582EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/07/09 7:0 a.m.21 views

Azure DevOps Server Spoofing Vulnerability

...

7.6CVSS7.6AI score0.01582EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.5 views

PT-2024-4740 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to the Azure DevOps Server development software and is associated with the failure to take measures to protect the web page structure. Exploitation of this...

8.7CVSS6.7AI score0.01582EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.4 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker exploits...

7.6CVSS6.8AI score0.01582EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.4 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker exploits...

7.6CVSS6.8AI score0.01582EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.7 views

PT-2024-4741 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to the Azure DevOps Server development software and is associated with a lack of protection for the web page structure. This can allow a remote attacker to...

8.7CVSS6.6AI score0.01582EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/07/09 12:0 a.m.16 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (July 2024)

The Microsoft Team Foundation Server or Azure DevOps is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A session spoofing vulnerability exists. An attacker can exploit this to perform actions with the privileges of another user. CVE-2024-35266, CVE-2024-35267...

7.6CVSS5.6AI score0.01582EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/03 6:51 a.m.27 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM DevOps Code ClearCase (CVE-2024-37532)

Summary IBM WebSphere Application Server WAS is shipped as a component of IBM DevOps Code ClearCase. Information about security vulnerabilities affecting WAS have been published in security bulletins. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

8.8CVSS8.9AI score0.00353EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2024/06/27 9:32 p.m.6 views

agenta (>=0.14.1a0 <=0.14.7a1), agentic-devops (>=0.0.5 <=0.0.9) +69 more potentially affected by CVE-2024-5710 via litellm (>=0.1.400 <=1.40.13)

litellm PYPI version =0.1.400, =0.14.1a0, =0.0.5, =0.0.4, =0.2.0, =0.29.0, =0.1.5, =0.1.0, =0.1.0, =0.0.1, =0.114.0, =0.0.1, =0.6.3, =0.7.10 and more Source cves: CVE-2024-5710 Source advisory: OSV:GHSA-QQCV-VG9F-5RR3...

6.5CVSS6AI score0.00406EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/06/27 9:32 p.m.5 views

agenta (>=0.14.1a0 <=0.14.7a1), agentic-devops (>=0.0.5 <=0.0.9) +71 more potentially affected by CVE-2024-5751 via litellm (>=0.1.400 <=1.40.15)

litellm PYPI version =0.1.400, =0.14.1a0, =0.0.5, =0.0.4, =0.2.0, =0.29.0, =0.1.5, =0.1.0, =0.1.0, =0.0.1, =0.114.0, =0.0.1, =0.6.3, =0.7.10 and more Source cves: CVE-2024-5751 Source advisory: OSV:GHSA-GPPG-GQW8-WH9G...

9.8CVSS7.2AI score0.00875EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:42 p.m.4 views

Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.annotation.azuretest (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:42 p.m.5 views

MAL-2024-2338 Malicious code in eu.tsystems.mms.tic.testerra.plugins.azuredevops.annotation.azuretest (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2024/06/25 12:29 p.m.6 views

MAL-2024-1791 Malicious code in aws-ecs-devops-using-aws-cdk (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:29 p.m.5 views

Malicious code in aws-ecs-devops-using-aws-cdk (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/25 12:4 p.m.49 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM HTTP Server shipped with IBM DevOps Code ClearCase [CVE-2024-24795, CVE-2023-38709]

Summary IBM HTTP Server IHS is shipped as a component of IBM DevOps Code ClearCase. Information about a security vulnerability affecting IHS has been published in a security bulletin. CVE-2024-24795, CVE-2023-38709 Vulnerability Details Refer to the security bulletins listed in the...

7.3CVSS6.2AI score0.03914EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/24 7:13 a.m.29 views

Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM DevOps Code ClearCase [CVE-2023-52425]

Summary IBM HTTP Server IHS is shipped as a component of IBM DevOps Code ClearCase. Information about a security vulnerability affecting IHS has been published in a security bulletin. CVE-2023-52425 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

7.5CVSS7.8AI score0.01815EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/17 2:48 p.m.32 views

Security Bulletin: IBM DevOps Release addresses multiple vulnerabilities.

Summary IBM DevOps Release 7.0.0.2 addresses multiple vulnerabilities. Vulnerability Details CVEID:CVE-2014-3643 DESCRIPTION: Jersey could allow a remote attacker to obtain sensitive information, caused by an XML external entity XXE error when processing XML data by jersey SAX parser. By sending ...

9.8CVSS9.1AI score0.95707EPSS
Exploits20Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.4 views

The vulnerability of the Azure DevOps Server software, related to lack of access control, allows a hacker to execute arbitrary code.

The vulnerability of the Azure DevOps Server development tool is related to lack of access control. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.5CVSS7.7AI score0.00847EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/12 6:36 a.m.30 views

Security Bulletin: Multiple vulnerabilities in Open JDK affecting Rational Functional Tester / DevOps Test UI

Summary There are multiple vulnerabilities in Open JDK Version 8, OpenJ9 used by Rational Functional Tester RFT / DevOps Test UI. RFT has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2024-21085 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component coul...

3.7CVSS4.5AI score0.01276EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2024/06/10 12:0 a.m.364 views

Kiuwan Local Analyzer / SAST / SaaS XML Injection / XSS / IDOR

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple critical vulnerabilities product: Kiuwan SAST on-premise KOP & cloud/SaaS Kiuwan Local Analyzer KLA vulnerable version: Kiuwan SAST 2.8.2402.3 Kiuwan Local...

7.4AI score0.0082EPSS
Exploits1
Rows per page
Query Builder