Описание
An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0758.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
EPSS
7.5 High
CVSS3
6 Medium
CVSS2
Дефекты
Связанные уязвимости
Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0758.
Уязвимость средств разработки программного обеспечения Azure DevOps Server, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии
EPSS
7.5 High
CVSS3
6 Medium
CVSS2