Azure Devops Server Security Vulnerabilities and Issues — Azure Devops Server CVE List

Lucene search

MicrosoftAzure Devops Server

15 matches found

CVE•added 2021/04/13 8:15 p.m.•123 views

CVE-2021-28459

Azure DevOps Server Spoofing Vulnerability

6.1CVSS6.4AI score0.00524EPSS

CVE•added 2023/08/08 6:15 p.m.•107 views

CVE-2023-36869

Azure DevOps Server Spoofing Vulnerability

6.3CVSS6.5AI score0.00181EPSS

CVE•added 2019/04/09 9:29 p.m.•94 views

CVE-2019-0857

A spoofing vulnerability that could allow a security feature bypass exists in when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Spoofing Vulnerability'.

6.5CVSS6AI score0.16381EPSS

CVE•added 2021/04/13 8:15 p.m.•88 views

CVE-2021-27067

Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability

6.5CVSS6.2AI score0.12326EPSS

CVE•added 2020/12/10 12:15 a.m.•85 views

CVE-2020-17135

Azure DevOps Server Spoofing Vulnerability

6.4CVSS5.8AI score0.00701EPSS

CVE•added 2019/06/12 2:29 p.m.•81 views

CVE-2019-0996

A spoofing vulnerability exists in Azure DevOps Server when it improperly handles requests to authorize applications, resulting in a cross-site request forgery. An attacker who successfully exploited this vulnerability could bypass OAuth protections and register an application on behalf of the targ...

6.5CVSS6.2AI score0.08129EPSS

CVE•added 2019/04/09 9:29 p.m.•80 views

CVE-2019-0870

A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867, CVE-2...

6.1CVSS5.5AI score0.00654EPSS

CVE•added 2020/06/09 8:15 p.m.•78 views

CVE-2020-1327

A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.

6.1CVSS6.8AI score0.00606EPSS

CVE•added 2019/04/09 9:29 p.m.•67 views

CVE-2019-0869

A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.

6.1CVSS5.9AI score0.00589EPSS

CVE•added 2019/04/09 9:29 p.m.•66 views

CVE-2019-0866

6.1CVSS5.5AI score0.00654EPSS

CVE•added 2019/04/09 9:29 p.m.•64 views

CVE-2019-0867

6.1CVSS5.5AI score0.00654EPSS

CVE•added 2019/04/09 9:29 p.m.•61 views

CVE-2019-0874

A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.

6.1CVSS5.6AI score0.00538EPSS

CVE•added 2019/04/09 9:29 p.m.•59 views

CVE-2019-0871

6.1CVSS5.5AI score0.00654EPSS

CVE•added 2019/04/09 9:29 p.m.•55 views

CVE-2019-0868

6.1CVSS5.5AI score0.00654EPSS

CVE•added 2023/12/14 12:15 a.m.•55 views

CVE-2023-21751

Azure DevOps Server Spoofing Vulnerability

6.5CVSS6.7AI score0.00248EPSS