Vulnerabilities > Microsoft > Team Foundation Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-13 | CVE-2021-27067 | Unspecified vulnerability in Microsoft Azure Devops Server and Team Foundation Server Azure DevOps Server and Team Foundation Server Information Disclosure Vulnerability | 6.5 |
| 2020-12-10 | CVE-2020-17145 | Unspecified vulnerability in Microsoft Azure Devops Server and Team Foundation Server Azure DevOps Server and Team Foundation Services Spoofing Vulnerability | 5.4 |
| 2020-03-12 | CVE-2020-0758 | Improper Privilege Management vulnerability in Microsoft Azure Devops Server and Team Foundation Server An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Elevation of Privilege Vulnerability'. | 6.0 |
| 2019-04-09 | CVE-2019-0871 | Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. | 4.3 |
| 2019-04-09 | CVE-2019-0870 | Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. | 4.3 |
| 2019-04-09 | CVE-2019-0868 | Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. | 4.3 |
| 2019-04-09 | CVE-2019-0867 | Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. | 4.3 |
| 2019-04-09 | CVE-2019-0866 | Cross-site Scripting vulnerability in Microsoft Azure Devops Server and Team Foundation Server A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server and Team Foundation Server do not properly sanitize user provided input, aka 'Azure DevOps Server and Team Foundation Server Cross-site Scripting Vulnerability'. | 4.3 |
| 2019-01-17 | CVE-2019-0647 | Information Exposure vulnerability in Microsoft Team Foundation Server 2017/2018 An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team. | 4.0 |