Microsoft Azure DevOps Server Spoofing Vulnerability (CVE-2023-21751)
CVE-2023-21751 Published on December 14, 2023
Azure DevOps Server Spoofing Vulnerability
Azure DevOps Server Spoofing Vulnerability
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2023-21751 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2023-21751
Want to know whenever a new CVE is published for Microsoft Azure Devops Server? stack.watch will email you.
Affected Versions
Microsoft Azure DevOps Server 2022:- Version 20231128.1 and below 20231128.1 is affected.
- Version 2020.1.0 and below 20231127.4 is affected.
Exploit Probability
EPSS
0.25%
Percentile
47.74%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.