Dec 2020: Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVE-2020-17145 Published on December 10, 2020

Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability

Vendor Advisory NVD

Products Associated with CVE-2020-17145

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Team Foundation Server

Microsoft Azure Devops Server

Microsoft Azure Devops Server 2019

Microsoft Team Foundation Server 2017

Microsoft Team Foundation Server 2018

Microsoft Team Foundation Server 2015

Microsoft Azure Devops Server 2020

Affected Versions

Microsoft Azure DevOps Server 2019.0.1:

Version 2019.0.0 and below publication is affected.

Microsoft Team Foundation Server 2017 Update 3.1:

Version 3.0 and below publication is affected.

Microsoft Team Foundation Server 2018 Update 1.2:

Version 1.0 and below publication is affected.

Microsoft Team Foundation Server 2018 Update 3.2:

Version 3.0 and below publication is affected.

Microsoft Team Foundation Server 2015 Update 4.2:

Version 4.0 and below publication is affected.

Microsoft Azure DevOps Server 2019 Update 1.1:

Version 1.0 and below publication is affected.

Microsoft Azure DevOps Server 2020:

Version 2020 and below publication is affected.

Exploit Probability

EPSS

0.53%

Percentile

66.95%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Dec 2020: Azure DevOps Server and Team Foundation Services Spoofing VulnerabilityCVE-2020-17145 Published on December 10, 2020

Products Associated with CVE-2020-17145

Affected Versions

Exploit Probability

Dec 2020: Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVE-2020-17145 Published on December 10, 2020