Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft team foundation server 2017 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-27067
Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
Microsoft Team Foundation Server 2018
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2015
Microsoft Azure Devops Server 2019
Microsoft Azure Devops Server 2019.0.1
Microsoft Azure Devops Server 2020
5.4
CVSSv3
CVE-2020-17145
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
Microsoft Team Foundation Server 2018
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2015
Microsoft Azure Devops Server 2019
Microsoft Azure Devops Server 2019.0.1
Microsoft Azure Devops Server 2020
5.4
CVSSv3
CVE-2020-0700
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2018
Microsoft Azure Devops Server 2019.0.1
3 Articles
7.5
CVSSv3
CVE-2020-0758
An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0...
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2018
Microsoft Azure Devops Server 2019
Microsoft Azure Devops Server 2019.0.1
3 Articles
5.4
CVSSv3
CVE-2019-1305
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.
Microsoft Team Foundation Server 2018
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2015
Microsoft Azure Devops Server 2019.0.1
1 Article
9.8
CVSSv3
CVE-2019-1072
A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input, aka 'Azure DevOps Server and Team Foundation Server Remote Code Execution Vulnerability'.
Microsoft Team Foundation Server 2018
Microsoft Azure Devops Server 2019.0.1
Microsoft Team Foundation Server 2010
Microsoft Team Foundation Server 2012
Microsoft Team Foundation Server 2013
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2015
1 Article
5.4
CVSSv3
CVE-2019-0979
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-20...
Microsoft Team Foundation Server 2018
Microsoft Azure Devops Server 2019
Microsoft Team Foundation Server 2017
1 Article
5.4
CVSSv3
CVE-2019-0872
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-20...
Microsoft Azure Devops Server 2019
Microsoft Team Foundation Server 2015
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2018
1 Article
6.1
CVSSv3
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
140 Github repositories
6.1
CVSSv3
CVE-2019-0866
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. This CVE ID is unique from CVE-20...
Microsoft Azure Devops Server 2019
Microsoft Team Foundation Server 2018
Microsoft Team Foundation Server 2017
Microsoft Team Foundation Server 2015
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »