Azure DevOps Server Elevation of Privilege Vulnerability - CVE-2023-36561| ID: oval:org.secpod.oval:def:93660 | Date: (C)2023-10-11 (M)2023-11-06 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Azure DevOps Server 2022, or 2020 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle issues in unspecified vectors. Successful exploitation could allow an attacker to gain access to the secrets of the user of the affected application.
| Platform: |
| Microsoft Windows 10 |
| Microsoft Windows 11 |
| Microsoft Windows Server 2012 |
| Microsoft Windows Server 2012 R2 |
| Microsoft Windows Server 2016 |
| Microsoft Windows Server 2019 |
| Microsoft Windows Server 2022 |
| Product: |
| Azure DevOps Server 2020 Update 1.2 |
| Azure DevOps Server 2020 |
| Azure DevOps Server 2022 Update 0.1 |
