Lucene search
K

1393 matches found

CVE
CVE
added 2023/10/10 5:8 p.m.87 views

CVE-2023-36561

CVE-2023-36561 affects Azure DevOps Server and is described as an Elevation of Privilege vulnerability. Multiple sources (NVD/NCSC and vendor advisories) list affected products including Azure DevOps Server 2020.x/2022.x variants and indicate the vulnerability enables an attacker to obtain higher...

7.3CVSS7.3AI score0.00847EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2023/10/10 7:0 a.m.62 views

Azure DevOps Server Elevation of Privilege Vulnerability

...

7.3CVSS7.1AI score0.00847EPSS
Exploits0
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.15 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker can...

7.3CVSS9.1AI score0.00847EPSS
Exploits0References3
NCSC
NCSC
added 2023/10/10 12:0 a.m.6 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in components of Azure. A malicious party could exploit the vulnerabilities to afford elevated privileges or to execute code with privileges of a user. Azure Real Time Operating System: |----------------|------|-------------------------------------| | CVE ID |...

9.8CVSS7AI score0.02243EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/10/10 12:0 a.m.5 views

PT-2023-9192 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to insufficient access control in Azure DevOps Server, which can be exploited by a remote attacker to execute arbitrary code. Recommendations: At the moment...

7.5CVSS9.6AI score0.00847EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2023/10/10 12:0 a.m.27 views

KLA61357 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Identity SDK can be exploited remotely to execute...

9.8CVSS9.2AI score0.02243EPSS
Exploits0References9
Kaspersky
Kaspersky
added 2023/10/10 12:0 a.m.86 views

KLA61353 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in HTTP/2 protocol can be exploited remotely to cause...

7.5CVSS8.9AI score0.99999EPSS
Exploits19References11
Tenable Nessus
Tenable Nessus
added 2023/10/10 12:0 a.m.31 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (October 2023)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead relied only on...

7.3CVSS7.7AI score0.00847EPSS
Exploits0References2
HackRead
HackRead
added 2023/09/29 4:41 p.m.19 views

The Role of DevOps in Streamlining Cloud Migration Processes

By Owais Sultan DevOps streamlines cloud migration by automating deployment and operations, ensuring a seamless transition and efficient management of cloud… This is a post from HackRead.com Read the original post: The Role of DevOps in Streamlining Cloud Migration Processes...

6.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/09/17 12:0 a.m.5 views

The vulnerability of the MachinePropertyBag class in the Azure DevOps Server software allows a hacker to execute arbitrary code.

The vulnerability of the MachinePropertyBag class in the Azure DevOps Server development tool is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7CVSS7.6AI score0.01289EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/14 12:0 a.m.5 views

The vulnerability of the Azure DevOps Server software lies in insufficient validation of input data, allowing a hacker to execute arbitrary code.

The vulnerability of the Azure DevOps Server software lies in insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using specially created data...

9CVSS8.2AI score0.01742EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/14 12:0 a.m.32 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (September 2023)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by multiple server remote code execution vulnerabilities. An authenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. Note that Ness...

8.8CVSS9.1AI score0.01742EPSS
Exploits0References3
NVD
NVD
added 2023/09/12 5:15 p.m.24 views

CVE-2023-38155

Azure DevOps Server Remote Code Execution Vulnerability...

8.1CVSS7.7AI score0.01289EPSS
Exploits0References1
OSV
OSV
added 2023/09/12 5:15 p.m.4 views

CVE-2023-38155

Azure DevOps Server Remote Code Execution Vulnerability...

8.1CVSS7.4AI score0.01289EPSS
Exploits0References1
NVD
NVD
added 2023/09/12 5:15 p.m.35 views

CVE-2023-33136

Azure DevOps Server Remote Code Execution Vulnerability...

8.8CVSS8.9AI score0.01742EPSS
Exploits0References1
OSV
OSV
added 2023/09/12 5:15 p.m.4 views

CVE-2023-33136

Azure DevOps Server Remote Code Execution Vulnerability...

8.8CVSS7.4AI score0.01742EPSS
Exploits0References1
Prion
Prion
added 2023/09/12 5:15 p.m.25 views

Remote code execution

Azure DevOps Server Remote Code Execution Vulnerability...

6.5CVSS9.4AI score0.01742EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/09/12 5:15 p.m.23 views

Remote code execution

Azure DevOps Server Remote Code Execution Vulnerability...

5.1CVSS8.6AI score0.01289EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/12 4:58 p.m.39 views

CVE-2023-38155 Azure DevOps Server Remote Code Execution Vulnerability

...

7CVSS8.6AI score0.01289EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 4:58 p.m.490 views

CVE-2023-38155

PT-2023-5165 reports a vulnerability in Azure DevOps Server and Team Foundation Server related to the deserialization mechanism in MachinePropertyBag, allowing arbitrary code execution and potential local privilege escalation. Affected versions are not specified in the entry. No patch details are...

8.1CVSS7.6AI score0.01289EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder