Microsoft Azure Devops Server 2019 Update 1.1
9 CVEs affecting Microsoft Azure Devops Server 2019 Update 1.1. Latest disclosed: 2021-04-13. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-0815 | High | 7.5 | 2020-03-12 | An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps S… |
CVE-2020-0758 | High | 7.5 | 2020-03-12 | An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps S… |
CVE-2021-27067 | Medium | 6.5 | 2021-04-13 | Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability |
CVE-2020-17135 | Medium | 6.4 | 2020-12-10 | Azure DevOps Server Spoofing Vulnerability |
CVE-2020-1327 | Medium | 6.1 | 2020-06-09 | A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnera… |
CVE-2020-17145 | Medium | 5.4 | 2020-12-10 | Azure DevOps Server and Team Foundation Services Spoofing Vulnerability |
CVE-2020-1325 | Medium | 5.4 | 2020-11-11 | Azure DevOps Server and Team Foundation Services Spoofing Vulnerability |
CVE-2020-1326 | Medium | 5.4 | 2020-07-14 | A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site… |
CVE-2020-0700 | Medium | 5.4 | 2020-03-12 | A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site… |