QwikSec

Security Database

CVE

CWE

Training

CVE-2018-8529

Published: Nov 15, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A remote code execution vulnerability exists when Team Foundation Server (TFS) does not enable basic authorization on the communication between the TFS and Search services, aka "Team Foundation Server Remote Code Execution Vulnerability." This affects Team.

Vendor	Product	Versions
Microsoft	Team	affected `Foundation Server 2018 Update 1.1` affected `Foundation Server 2018 Update 3`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8529

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.