CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-0857

A spoofing vulnerability that could allow a security feature bypass exists in when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Spoofing Vulnerability'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.164

EPSS Ranking 94.6%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/107760
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0857
http://www.securityfocus.com/bid/107760
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0857

Products affected by CVE-2019-0857

Microsoft » Azure Devops Server » Version: 2019

cpe:2.3:o:microsoft:azure_devops_server:2019

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0857

Products

Pricing

Contact Us