Microsoft: >> Azure Devops Server >> 2019.0.1 Security Vulnerabilities
Server-side request forgery (ssrf) in Azure DevOps Server allows an authorized attacker to perform spoofing over a network.
CVSS Score
6.5
EPSS Score
0.001
Published
2026-02-10
Azure DevOps Server Remote Code Execution Vulnerability
CVSS Score
7.0
EPSS Score
0.003
Published
2023-09-12
Azure DevOps Server Remote Code Execution Vulnerability
CVSS Score
8.8
EPSS Score
0.007
Published
2023-09-12
Azure DevOps Server Spoofing Vulnerability
CVSS Score
6.3
EPSS Score
0.002
Published
2023-08-08
Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability
CVSS Score
6.5
EPSS Score
0.123
Published
2021-04-13
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVSS Score
5.4
EPSS Score
0.005
Published
2020-12-10
Azure DevOps Server Spoofing Vulnerability
CVSS Score
6.4
EPSS Score
0.005
Published
2020-12-10
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.
CVSS Score
5.4
EPSS Score
0.005
Published
2020-07-14
A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.
CVSS Score
6.1
EPSS Score
0.006
Published
2020-06-09
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.
CVSS Score
5.4
EPSS Score
0.005
Published
2020-03-12
Page 1