Published: 17/01/2019 Updated: 22/01/2019

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft team foundation server 2018

It's now 2019, and your Windows DHCP server can be pwned by a packet, IE and Edge by a webpage, and so on

The Register • Shaun Nichols in San Francisco • 13 Feb 2019

Hefty load from Microsoft, Adobe, with special guest star Cisco Everyone screams patch ASAP – but it takes most organizations a month to update their networks

Patch Tuesday Microsoft and Adobe have teamed up to give users and sysadmins plenty of work to do this week. The February edition of Patch Tuesday includes more than 70 CVE-listed vulnerabilities from each vendor – yes, each – as well as a critical security fix from Cisco. You should patch them as soon as it is possible. For Redmond, the February dump covers 77 CVE-listed bugs across Windows, Office, and Edge/IE. Among the most potentially serious was CVE-2019-0626, a remote code execution v...

CVE-2019-0646

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect