CVSS: 7.5EPSS: 2%CPEs: 3EXPL: 0CVE-2023-21565 – Azure DevOps Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-21565
13 Jun 2023 — Azure DevOps Server Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21565 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21553 – Azure DevOps Server Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21553
14 Feb 2023 — Azure DevOps Server Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21553 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2023-21564 – Azure DevOps Server Cross-Site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2023-21564
14 Feb 2023 — Azure DevOps Server Cross-Site Scripting Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21564 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2021-28459 – Azure DevOps Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2021-28459
13 Apr 2021 — Azure DevOps Server Spoofing Vulnerability Una vulnerabilidad de Suplantación de Azure DevOps Server Microsoft Azure DevOps Server version 2020.0.1 suffers from a cross site scripting vulnerability. • https://packetstorm.news/files/id/162190 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 12%CPEs: 8EXPL: 0CVE-2021-27067 – Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-27067
13 Apr 2021 — Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Azure DevOps Server y Team Foundation Server • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27067 •
CVSS: 5.4EPSS: 0%CPEs: 7EXPL: 0CVE-2020-17145 – Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2020-17145
09 Dec 2020 — Azure DevOps Server and Team Foundation Services Spoofing Vulnerability Vulnerabilidad de suplantación de identidad en Azure DevOps Server y Team Foundation Services • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17145 •
CVSS: 6.4EPSS: 0%CPEs: 2EXPL: 0CVE-2020-17135 – Azure DevOps Server Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2020-17135
09 Dec 2020 — Azure DevOps Server Spoofing Vulnerability Vulnerabilidad de suplantación del servidor Azure DevOps • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17135 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-1325 – Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2020-1325
11 Nov 2020 — Azure DevOps Server and Team Foundation Services Spoofing Vulnerability Vulnerabilidad de suplantación de zure DevOps Server y Team Foundation Services • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1325 •
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2020-1326
https://notcve.org/view.php?id=CVE-2020-1326
14 Jul 2020 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server no sanea apropiadamente la entrada proporcionada por el usuario, también se conoce como "Azure DevOps Server Cross-site Scripting Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1326 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2020-1327
https://notcve.org/view.php?id=CVE-2020-1327
09 Jun 2020 — A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'. Se presenta una vulnerabilidad de suplantación de identidad en Microsoft Azure DevOps Server cuando presenta un fallo al manejar apropiadamente las peticiones web, también se conoce como "Azure DevOps Server HTML Injection Vulnerability" • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1327 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •