Lucene search
K

4 matches found

NVD
NVD
added 2019/04/09 9:29 p.m.17 views

CVE-2019-0871

A Cross-site Scripting XSS vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867,...

6.1CVSS5.8AI score0.02419EPSS
Exploits0References2
Prion
Prion
added 2019/04/09 9:29 p.m.17 views

Cross site scripting

A Cross-site Scripting XSS vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0868,...

4.3CVSS5.9AI score0.02626EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2019/04/09 8:20 p.m.75 views

CVE-2019-0871

Azure DevOps Server and Team Foundation Server are affected by a cross-site scripting (XSS) vulnerability due to insufficient validation of user-supplied input. An attacker could exploit this to run scripts in the security context of the current user. CNVD entries describe the issue but do not pr...

6.1CVSS5.5AI score0.02419EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.31 views

Security Updates for Microsoft Team Foundation Server / Azure DevOps Server (April 2019)

The Microsoft Team Foundation Server or Azure DevOps Server installation on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when Azure DevOps Server 2019 does not properly enforce project...

7.5CVSS6.5AI score0.03858EPSS
Exploits0References15
Rows per page
Query Builder