CVSS: 6.5EPSS: 12%CPEs: 8EXPL: 0CVE-2021-27067 – Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-27067
13 Apr 2021 — Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información de Azure DevOps Server y Team Foundation Server • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27067 •
CVSS: 5.4EPSS: 0%CPEs: 7EXPL: 0CVE-2020-17145 – Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2020-17145
09 Dec 2020 — Azure DevOps Server and Team Foundation Services Spoofing Vulnerability Vulnerabilidad de suplantación de identidad en Azure DevOps Server y Team Foundation Services • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17145 •
CVSS: 7.5EPSS: 5%CPEs: 6EXPL: 0CVE-2020-0758
https://notcve.org/view.php?id=CVE-2020-0758
12 Mar 2020 — An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0815. Existe una vulnerabilidad de elevación de privilegios cuando Azure DevOps Server y Team Foundation Services manejan inapropiadamente los tokens de trabajo de canalización (pipeline), también se conoce como "Azure DevOps Server and Team F... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0758 •
CVSS: 5.4EPSS: 0%CPEs: 6EXPL: 0CVE-2020-0700
https://notcve.org/view.php?id=CVE-2020-0700
12 Mar 2020 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'. Existe una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server no sanea apropiadamente la entrada proporcionada por el usuario, también se conoce como "Azure DevOps Server Cross-site Scripting Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0700 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2019-1305
https://notcve.org/view.php?id=CVE-2019-1305
11 Sep 2019 — A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Team Foundation Server no sanea apropiadamente la entrada proporcionada por el usuario, también se conoce como "Team Foundation Server Cross-site Scripting Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1305 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 24%CPEs: 8EXPL: 0CVE-2019-1072
https://notcve.org/view.php?id=CVE-2019-1072
15 Jul 2019 — A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input, aka 'Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability'. Existe una vulnerabilidad de ejecución de código remota cuando Azure DevOps Server y Team Foundation Server (TFS), manejan inapropiadamente las entradas de los usuarios, también se conoce como "Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability". • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1072 • CWE-20: Improper Input Validation •
CVSS: 5.4EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0979
https://notcve.org/view.php?id=CVE-2019-0979
16 May 2019 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0872. Hay una vulnerabilidad de secuencias de comandos del tipo Cross-site (XSS) cuando Azure DevOps Server y Team Foundation Server no desinfectan apropiadamente la entrada provista por el usuario, también conocida como 'Vulnerabilidad de... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0979 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2019-0872
https://notcve.org/view.php?id=CVE-2019-0872
16 May 2019 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0979. Existe una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server y Team Foundation Server no se hace un saneamiento adecuado para la entrada suministrada por el usuario, también se conoce como 'Azure DevOps Ser... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0872 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0870
https://notcve.org/view.php?id=CVE-2019-0870
09 Apr 2019 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867, CVE-2019-0868, CVE-2019-0871. Se presenta una vulnerabilidad de tipo Cross-site Scripting (XSS) cuando Azure DevOps Server y Team Foundation Server no hacen el saneamiento apropiadamente en la entrada provista por el u... • http://www.securityfocus.com/bid/107754 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0871
https://notcve.org/view.php?id=CVE-2019-0871
09 Apr 2019 — A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0866, CVE-2019-0867, CVE-2019-0868, CVE-2019-0870. Se presenta una vulnerabilidad de tipo Cross-Site Scripting (XSS) cuando Azure DevOps Server y Team Foundation Server no hacen el saneamiento apropiadamente en la entrada provista por el u... • http://www.securityfocus.com/bid/107755 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •