RSS   Podatności dla 'Team foundation server'   RSS

2021-04-13
 
CVE-2021-27067

CWE-200
 

 
Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability

 
2020-12-10
 
CVE-2020-17145

CWE-20
 

 
, aka 'Azure DevOps Server and Team Foundation Services Spoofing Vulnerability'.

 
2020-03-12
 
CVE-2020-0758

CWE-269
 

 
An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0815.

 
 
CVE-2020-0700

CWE-79
 

 
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.

 
2019-09-11
 
CVE-2019-1306

CWE-20
 

 
A remote code execution vulnerability exists when Azure DevOps Server (ADO) and Team Foundation Server (TFS) fail to validate input properly, aka 'Azure DevOps and Team Foundation Server Remote Code Execution Vulnerability'.

 
 
CVE-2019-1305

CWE-79
 

 
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.

 
2019-07-15
 
CVE-2019-1076

CWE-79
 

 
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.

 
 
CVE-2019-1072

CWE-20
 

 
A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input, aka 'Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability'.

 
2019-05-16
 
CVE-2019-0979

CWE-79
 

 
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-2019-0872.

 
 
CVE-2019-0971

CWE-200
 

 
An information disclosure vulnerability exists when Azure DevOps Server and Microsoft Team Foundation Server do not properly sanitize a specially crafted authentication request to an affected server, aka 'Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability'.

 


Copyright 2024, cxsecurity.com

 

Back to Top