Azure Devops Server Security Vulnerabilities and Issues — Azure Devops Server CVE List

Lucene search

MicrosoftAzure Devops Server

9 matches found

CVE•added 2019/04/09 9:29 p.m.•94 views

CVE-2019-0857

A spoofing vulnerability that could allow a security feature bypass exists in when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Spoofing Vulnerability'.

6.5CVSS6AI score0.16381EPSS

CVE•added 2019/04/09 9:29 p.m.•80 views

CVE-2019-0870

A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867, CVE-2...

6.1CVSS5.5AI score0.00549EPSS

CVE•added 2019/04/09 9:29 p.m.•67 views

CVE-2019-0869

A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.

6.1CVSS5.9AI score0.00494EPSS

CVE•added 2019/04/09 9:29 p.m.•66 views

CVE-2019-0866

6.1CVSS5.5AI score0.00549EPSS

CVE•added 2019/04/09 9:29 p.m.•64 views

CVE-2019-0867

6.1CVSS5.5AI score0.00549EPSS

CVE•added 2019/04/09 9:29 p.m.•61 views

CVE-2019-0874

A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.

6.1CVSS5.6AI score0.00451EPSS

CVE•added 2019/04/09 9:29 p.m.•60 views

CVE-2019-0875

An elevation of privilege vulnerability exists when Azure DevOps Server 2019 does not properly enforce project permissions, aka 'Azure DevOps Server Elevation of Privilege Vulnerability'.

7.5CVSS6.4AI score0.03437EPSS

CVE•added 2019/04/09 9:29 p.m.•59 views

CVE-2019-0871

6.1CVSS5.5AI score0.00549EPSS

CVE•added 2019/04/09 9:29 p.m.•55 views

CVE-2019-0868

6.1CVSS5.5AI score0.00549EPSS