CVE-2020-1432 — Sensitive Information Exposure in Microsoft Internet Explorer 11
Severity
4.3MEDIUMNVD
EPSS
9.6%
top 7.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 14
Latest updateMay 24
Description
An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business via Internet Explorer Information Disclosure Vulnerability'.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4
Affected Packages12 packages
Patches
🔴Vulnerability Details
2GHSA▶
GHSA-775r-4pcv-6q97: An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business via Internet Explore↗2022-05-24
CVEList▶
CVE-2020-1432: An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer, aka 'Skype for Business via Internet Explore↗2020-07-14