CVE-2012-1892

Currently unrated

Key Information:

Vendor
Microsoft
Status
Visual Studio Team Foundation Server
Vendor
CVE Published:
11 September 2012

Summary

Cross-site scripting (XSS) vulnerability in Microsoft Visual Studio Team Foundation Server 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "XSS Vulnerability."

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS
http://www.us-cert.gov/cas/techalerts/TA12-255A.html
third-party-advisoryx_refsource_CERT

EPSS Score

69% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.