VDB

CISA-2024-20667

CISA-2024-20667 PUBLISHED CVSS 7.5 HIGH

Reported by microsoft · Published February 13, 2024

Azure DevOps Server Remote Code Execution Vulnerability

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

VendorProductVersions
MicrosoftAzure DevOps Server 202220231128.1
MicrosoftAzure DevOps Server1.0.0
MicrosoftAzure DevOps Server 2020.1.22020.1.0
MicrosoftAzure DevOps Server 2020.1.22020.1.0, 2020.1.0
MicrosoftAzure DevOps Server 202220231128.1, 20231128.1
microsoftazure_devops_server2020.1.0, 20231128.1, 1.0.0
MicrosoftAzure DevOps Server1.0.0, 1.0.0

Timeline

  • Feb 13, 2024 CVE Published
  • May 9, 2025 CVE Updated
  • Apr 26, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›