CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1320 matches found

CVE•added 2023/10/10 5:8 p.m.•77 views

CVE-2023-36561

CVE-2023-36561 affects Azure DevOps Server and is described as an Elevation of Privilege vulnerability. Multiple sources (NVD/NCSC and vendor advisories) list affected products including Azure DevOps Server 2020.x/2022.x variants and indicate the vulnerability enables an attacker to obtain higher...

7.3CVSS7.3AI score0.00274EPSS

Exploits0References1Affected Software1

Microsoft CVE•added 2023/10/10 7:0 a.m.•52 views

Azure DevOps Server Elevation of Privilege Vulnerability

...

7.3CVSS7.1AI score0.00274EPSS

Exploits0

Positive Technologies•added 2023/10/10 12:0 a.m.•2 views

PT-2023-9192 · Microsoft · Azure Devops Server

Name of the Vulnerable Software and Affected Versions: Azure DevOps Server affected versions not specified Description: The issue is related to insufficient access control in Azure DevOps Server, which can be exploited by a remote attacker to execute arbitrary code. Recommendations: At the moment...

7.5CVSS9.6AI score0.00274EPSS

Exploits0References6

Kaspersky•added 2023/10/10 12:0 a.m.•22 views

KLA61357 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Identity SDK can be exploited remotely to execute...

9.8CVSS9.2AI score0.0246EPSS

Exploits0References9

NCSC•added 2023/10/10 12:0 a.m.•2 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in components of Azure. A malicious party could exploit the vulnerabilities to afford elevated privileges or to execute code with privileges of a user. Azure Real Time Operating System: |----------------|------|-------------------------------------| | CVE ID |...

9.8CVSS7AI score0.0246EPSS

Exploits0

Tenable Nessus•added 2023/10/10 12:0 a.m.•31 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (October 2023)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. Note that Nessus has not tested for this issue but has instead relied only on...

7.3CVSS7.7AI score0.00274EPSS

Exploits0References2

CNNVD•added 2023/10/10 12:0 a.m.•1 views

Microsoft Azure DevOps Server Security Vulnerability

Microsoft Azure DevOps Server is a suite of software development collaboration tools from Microsoft Corporation USA. The product includes features such as code sharing, work tracking, and software distribution. A security vulnerability exists in Microsoft Azure DevOps Server. An attacker can...

7.3CVSS9.1AI score0.00274EPSS

Exploits0References3

Kaspersky•added 2023/10/10 12:0 a.m.•83 views

KLA61353 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in HTTP/2 protocol can be exploited remotely to cause...

7.5CVSS8.9AI score0.944EPSS

Exploits19References11

HackRead•added 2023/09/29 4:41 p.m.•16 views

The Role of DevOps in Streamlining Cloud Migration Processes

By Owais Sultan DevOps streamlines cloud migration by automating deployment and operations, ensuring a seamless transition and efficient management of cloud… This is a post from HackRead.com Read the original post: The Role of DevOps in Streamlining Cloud Migration Processes...

6.9AI score

Exploits0

Tenable Nessus•added 2023/09/14 12:0 a.m.•31 views

Security Updates for Microsoft Team Foundation Server and Azure DevOps Server (September 2023)

The Microsoft Team Foundation Server or Azure DevOps install is missing security updates. It is, therefore, affected by multiple server remote code execution vulnerabilities. An authenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands. Note that Ness...

8.8CVSS9.1AI score0.00662EPSS

Exploits0References3