CVE-2020-17135

CWE-20Improper Input Validation3 documents3 sources
Severity
6.4MEDIUM
No vector
EPSS
0.5%
top 33.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Azure Devops Server 2019.0.1Microsoft Azure Devops Server 2019 Update 1.1
Timeline
PublishedDec 9
Latest updateMay 24

Description

Azure DevOps Server Spoofing Vulnerability Azure DevOps Server Spoofing Vulnerability

Affected Packages2 packages

CVEListV5microsoft/azure_devops_server_2019.0.12019.0.0publication
CVEListV5microsoft/azure_devops_server_2019_update_1.11.0publication

🔴Vulnerability Details

2
GHSA
GHSA-55r5-f664-q4f7: , aka 'Azure DevOps Server Spoofing Vulnerability'2022-05-24
CVEList
Azure DevOps Server Spoofing Vulnerability2020-12-09

📋Vendor Advisories

1
Microsoft
Azure DevOps Server Spoofing Vulnerability2020-12-08
CVE-2020-17135 (MEDIUM CVSS 6.4) | Azure DevOps Server Spoofing Vulner | cvebase.io