Lucene search
K

1393 matches found

Vulnrichment
Vulnrichment
added 2023/06/13 11:25 p.m.17 views

CVE-2023-21569 Azure DevOps Server Spoofing Vulnerability

...

5.5CVSS5.5AI score0.00684EPSS
Exploits0References1
CVE
CVE
added 2023/06/13 11:25 p.m.107 views

CVE-2023-21569

CVE-2023-21569 is a spoofing vulnerability in Microsoft Azure DevOps Server. Connected sources corroborate that multiple Azure DevOps Server versions are affected (notably 2020.1.2 and 2022/2022.0.1 per CNNVD), with the issue enabling spoofing of the user interface and potentially exposing data i...

5.5CVSS5.7AI score0.00684EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/13 11:25 p.m.20 views

CVE-2023-21569 Azure DevOps Server Spoofing Vulnerability

...

5.5CVSS6.4AI score0.00684EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/13 11:25 p.m.23 views

CVE-2023-21565 Azure DevOps Server Spoofing Vulnerability

...

7.1CVSS7.2AI score0.00933EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/13 11:25 p.m.18 views

CVE-2023-21565 Azure DevOps Server Spoofing Vulnerability

...

7.1CVSS6.9AI score0.00933EPSS
Exploits0References1
CVE
CVE
added 2023/06/13 11:25 p.m.131 views

CVE-2023-21565

CVE-2023-21565 : Azure DevOps Server spoofing vulnerability with CVSS 3.1 base score 7.1 (HIGH). Public exploits exist. Affected products across connected sources include Azure DevOps Server 2022, Azure DevOps Server 2020.1.2, and Azure DevOps Server 2022.0.1. The vulnerability is a server-side s...

7.1CVSS7AI score0.00933EPSS
Exploits0References1Affected Software1
Microsoft Secure
Microsoft Secure
added 2023/06/13 4:0 p.m.15 views

How Microsoft and Sonrai integrate to eliminate attack paths

Cloud development challenges conventional thinking about risk. A “perimeter” was always the abstraction that security teams could start from—defining their perimeter and exposing the cracks in firewalls and network access. With more and more infrastructure represented as ephemeral code, protectin...

6.9AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/06/13 7:0 a.m.30 views

Azure DevOps Server Spoofing Vulnerability

...

5.5CVSS6.5AI score0.00684EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2023/06/13 7:0 a.m.39 views

Azure DevOps Server Spoofing Vulnerability

...

7.1CVSS7.2AI score0.00933EPSS
Exploits0
NCSC
NCSC
added 2023/06/13 12:0 a.m.45 views

Vulnerabilities fixed in Microsoft Developer Tools

Microsoft has fixed vulnerabilities in several Developer Tools. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root privileges Remote code execution...

7.8CVSS8.5AI score0.52164EPSS
Exploits2
Kaspersky
Kaspersky
added 2023/06/13 12:0 a.m.98 views

KLA50317 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of...

7.8CVSS10AI score0.52164EPSS
Exploits2References53
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/06/13 12:0 a.m.6 views

SRE vs DevOps: Differences & Similarities

SRE vs DevOps: which approach should you use? Explore shared goals and distinctions between their functions and responsibilities...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.4 views

PT-2023-3135 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to errors in the representation of information by the user interface. It may allow a remote attacker to conduct spoofing attacks. Recommendations: At the...

6.5CVSS9.3AI score0.00684EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2023/06/13 12:0 a.m.27 views

KLA50322 Multiple vulnerabilities in Microsoft Azure

A spoofing vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to spoof user interface. Original advisories CVE-2023-21569 CVE-2023-21565 Related products Microsoft-Azure CVE list CVE-2023-21565 high CVE-2023-21569 high KB list Solution Install necessa...

7.1CVSS6.7AI score0.00933EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.7 views

Microsoft Azure DevOps Server 安全漏洞

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. The following produc...

7.1CVSS7.5AI score0.00933EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.6 views

Microsoft Azure DevOps Server 安全漏洞

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. The following produc...

5.5CVSS6.9AI score0.00684EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.4 views

PT-2023-3136 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks...

7.5CVSS9.3AI score0.00933EPSS
Exploits0References7
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/05/19 12:0 a.m.9 views

Azure vs. AWS Developer Tools Guide

Azure vs. AWS — which should you use for your DevOps environment? Discover the differences, similarities, and use cases to make an informed decision...

7AI score
Exploits0
NVD
NVD
added 2023/05/17 6:15 p.m.28 views

CVE-2023-26044

react/http is an event-driven, streaming HTTP client and server implementation for ReactPHP. Previous versions of ReactPHP's HTTP server component contain a potential DoS vulnerability that can cause high CPU load when processing large HTTP request bodies. This vulnerability has little to no impa...

5.3CVSS5.1AI score0.0068EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/05/17 6:15 p.m.43 views

CVE-2023-26044

react/http is an event-driven, streaming HTTP client and server implementation for ReactPHP. Previous versions of ReactPHP's HTTP server component contain a potential DoS vulnerability that can cause high CPU load when processing large HTTP request bodies. This vulnerability has little to no impa...

5.3CVSS6AI score0.0068EPSS
Exploits0References4
Rows per page
Query Builder