Description
Multiple vulnerabilities were found in Microsoft Development Tools. Malicious users can exploit these vulnerabilities to obtain sensitive information, perform cross-site scripting attacks.
Below is a complete list of vulnerabilities:
- A cross-site-scripting (XSS) vulnerability in Team Foundation Server can be exploited remotely via specially crafted request to perform cross-site scripting attacks;
- An information disclosure vulnerability in Team Foundation Server can be exploited remotely to obtain sensitive information.
Original advisories
Related products
CVE list
- CVE-2019-0646 warning
- CVE-2019-0647 warning
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!