Azure DevOps Server Spoofing Vulnerability
CVE-2023-36869

6.3MEDIUM

Key Information:

Vendor: Microsoft
Status: Azure Devops Server; Azure Devops Server 2020.1.2; Azure Devops Server 2022.0.1; Azure Devops Server 2019.0.1
Vendor: CVE Published:; 8 August 2023

What is CVE-2023-36869?

Azure DevOps Server Spoofing Vulnerability

Azure DevOps Server 2019.0.1 Unknown 2019.0.0 < 20230721.6

Azure DevOps Server 2020.1.2 Unknown 2020.1.0 < 20230601.3

Azure DevOps Server 2022.0.1 Unknown 2022.0.0 < 20230602.5

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet