CVE-2019-0875
CVE-2019-0875
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 3.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
09 Apr 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An elevation of privilege vulnerability exists when Azure DevOps Server 2019 does not properly enforce project permissions, aka 'Azure DevOps Server Elevation of Privilege Vulnerability'.
Affected products
Microsoft · Azure DevOps Server