cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-20667,https://securityvulnerability.io/vulnerability/CVE-2024-20667,Azure DevOps Server Remote Code Execution Vulnerability,"A security vulnerability exists in Azure DevOps Server that permits remote code execution. This flaw can be exploited by an attacker to run arbitrary code within the context of the application, potentially leading to unauthorized access and severe impacts on the integrity and confidentiality of sensitive data. It is critical for organizations utilizing Azure DevOps Server to implement recommended security updates to mitigate this risk effectively. Detailed information and remediation guidance can be found in the Microsoft advisory.",Microsoft,"Azure Devops Server 2022,Azure Devops Server,Azure Devops Server 2020.1.2",7.5,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-02-13T18:02:07.424Z,0
CVE-2023-21751,https://securityvulnerability.io/vulnerability/CVE-2023-21751,Azure DevOps Server Spoofing Vulnerability,Azure DevOps Server Spoofing Vulnerability,Microsoft,"Azure Devops Server 2022,Azure Devops Server 2020.1.2",6.5,MEDIUM,0.0004799999878741801,false,,false,false,false,,,false,false,,2023-12-14T00:15:00.000Z,0
CVE-2023-36561,https://securityvulnerability.io/vulnerability/CVE-2023-36561,Azure DevOps Server Elevation of Privilege Vulnerability,"An elevation of privilege vulnerability exists in Azure DevOps Server, enabling an attacker to gain elevated access rights. This vulnerability could allow an attacker to perform actions that would normally be restricted, potentially leading to a compromise of system integrity. It is crucial for organizations using affected versions of Azure DevOps Server to apply security updates to mitigate risks and secure their development environments.",Microsoft,"Azure Devops Server 2022.0.1,Azure Devops Server 2020.0.2,Azure Devops Server 2020.1.2",7.3,HIGH,0.00046999999904073775,false,,false,false,false,,,false,false,,2023-10-10T18:15:00.000Z,0
CVE-2023-33136,https://securityvulnerability.io/vulnerability/CVE-2023-33136,Azure DevOps Server Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Azure DevOps Server, which may allow an attacker to execute arbitrary code with the privileges of the service account. This flaw could be exploited through a specially crafted request, potentially leading to unauthorized access and system compromise. Organizations using affected versions are advised to apply the necessary updates to mitigate risk.",Microsoft,"Azure Devops Server 2020.0.2,Azure Devops Server,Azure Devops Server 2020.1.2,Azure Devops Server 2022.0.1,Azure Devops Server 2019.0.1",8.8,HIGH,0.0015200000489130616,false,,false,false,false,,,false,false,,2023-09-12T17:15:00.000Z,0
CVE-2023-38155,https://securityvulnerability.io/vulnerability/CVE-2023-38155,Azure DevOps Server Remote Code Execution Vulnerability,"A severe vulnerability has been identified in Azure DevOps Server, allowing unauthorized users to execute arbitrary code remotely. This issue arises due to improper validation of user input. An attacker exploiting this vulnerability can gain control of affected systems, potentially leading to data breaches or service disruptions. It is crucial for users of affected versions to apply patches and take preventive measures to mitigate such risks.",Microsoft,"Azure Devops Server 2019.0.1,Azure Devops Server 2022.0.1,Azure Devops Server 2020.1.2,Azure Devops Server,Azure Devops Server 2020.0.2",7,HIGH,0.016049999743700027,false,,false,false,false,,,false,false,,2023-09-12T17:15:00.000Z,0
CVE-2023-36869,https://securityvulnerability.io/vulnerability/CVE-2023-36869,Azure DevOps Server Spoofing Vulnerability,Azure DevOps Server Spoofing Vulnerability,Microsoft,"Azure Devops Server,Azure Devops Server 2020.1.2,Azure Devops Server 2022.0.1,Azure Devops Server 2019.0.1",6.3,MEDIUM,0.07408999651670456,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-21569,https://securityvulnerability.io/vulnerability/CVE-2023-21569,Azure DevOps Server Spoofing Vulnerability,Azure DevOps Server Spoofing Vulnerability,Microsoft,"Azure Devops Server 2020.1.2,Azure Devops Server 2022,Azure Devops Server 2022.0.1",5.5,MEDIUM,0.09003999829292297,false,,false,false,false,,,false,false,,2023-06-14T00:15:00.000Z,0
CVE-2023-21565,https://securityvulnerability.io/vulnerability/CVE-2023-21565,Azure DevOps Server Spoofing Vulnerability,"A spoofing vulnerability in Azure DevOps Server allows an attacker to impersonate legitimate users, potentially leading to unauthorized access to sensitive information and functionalities. This weakness underlines the importance of robust authentication mechanisms to safeguard against identity deception attacks. Organizations using Azure DevOps Server should review their security configurations and apply recommended patches to mitigate risk.",Microsoft,"Azure Devops Server 2022,Azure Devops Server 2020.1.2,Azure Devops Server 2022.0.1",7.1,HIGH,0.07620000094175339,false,,false,false,false,,,false,false,,2023-06-14T00:15:00.000Z,0
CVE-2023-21553,https://securityvulnerability.io/vulnerability/CVE-2023-21553,Azure DevOps Server Remote Code Execution Vulnerability,"The vulnerability in Azure DevOps Server allows attackers to execute arbitrary code remotely, potentially leading to total system compromise. This flaw could be exploited if an attacker gains access to the server, making it imperative for organizations to apply patches and security updates promptly to mitigate risk. The vulnerability affects specific versions of the Azure DevOps Server, emphasizing the importance of maintaining current software versions and applying security measures diligently.",Microsoft,Azure Devops Server 2020.1.2,7.5,HIGH,0.0013000000035390258,false,,false,false,false,,,false,false,,2023-02-14T21:15:00.000Z,0