Azure DevOps Server Remote Code Execution Vulnerability
References
Link | Resource |
---|---|
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667 | Patch Vendor Advisory |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 08:52
Type | Values Removed | Values Added |
---|---|---|
References | () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667 - Patch, Vendor Advisory |
29 May 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-77 |
28 May 2024, 21:16
Type | Values Removed | Values Added |
---|---|---|
CWE |
11 Apr 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-77 |
22 Feb 2024, 15:30
Type | Values Removed | Values Added |
---|---|---|
References | () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20667 - Patch, Vendor Advisory | |
CPE | cpe:2.3:o:microsoft:azure_devops_server:2020.1.2:-:*:*:*:*:*:* cpe:2.3:o:microsoft:azure_devops_server:2022.1:-:*:*:*:*:*:* cpe:2.3:o:microsoft:azure_devops_server:2019.1.2:-:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
Summary |
|
|
First Time |
Microsoft
Microsoft azure Devops Server |
13 Feb 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-13 18:15
Updated : 2024-11-21 08:52
NVD link : CVE-2024-20667
Mitre link : CVE-2024-20667
CVE.ORG link : CVE-2024-20667
JSON object : View
Products Affected
microsoft
- azure_devops_server
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
NVD-CWE-noinfo