CVE-2020-17145

Published: Dec 10, 2020Modified: Aug 28, 2025

5.4

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Exploitability: 2.3 / Impact: 2.7

Source: NVD (Secondary)

Description

Azure DevOps Server and Team Foundation Services Spoofing Vulnerability

Products: Microsoft: Azure Devops Server, Team Foundation Server

2 products

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Microsoft Azure Devops Server	Version 2019.0.1
Microsoft Azure Devops Server	Version 2019 update1.1
Microsoft Azure Devops Server	Version 2020
Microsoft Team Foundation Server	Version 2015 4.2
Microsoft Team Foundation Server	Version 2017 3.1
Microsoft Team Foundation Server	Version 2018 1.2
Microsoft Team Foundation Server	Version 2018 3.2

Source: secure@microsoft.com

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

No history available yet.