PT-2019-1303 · Microsoft · Team Foundation Server

Publicado

2019-01-15

Atualizado

2019-02-26

CVE-2019-0647

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Team Foundation Server (affected versions not specified)

Description An information disclosure issue exists due to improper handling of variables marked as secret. This could allow a remote attacker to disclose protected information by creating a task that contains a protected variable.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

BDU:2019-00534

CVE-2019-0647

Produtos afetados

Team Foundation Server

PT-2019-1303 · Microsoft · Team Foundation Server

CVE-2019-0647

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5