CVE-2021-26421Microsoft Lync Server 2013 Cu10 vulnerability

4 documents4 sources
Severity
7.1HIGHNVD
CNA6.5
EPSS
1.7%
top 17.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Microsoft Lync Server 2013 Cu10Microsoft Skype FOR Business Server 2015 Cu11Microsoft Lync Server+1 more
Timeline
PublishedMay 11
Latest updateMay 24

Description

Skype for Business and Lync Spoofing Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:NExploitability: 2.8 | Impact: 4.2

Affected Packages4 packages

CVEListV5microsoft/skype_for_business_server_2015_cu112015 CU112046.369
CVEListV5microsoft/microsoft_lync_server_2013_cu108308.08308.1144
NVDmicrosoft/skype2015

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-w6mv-8x3w-r7w5: Skype for Business and Lync Spoofing Vulnerability2022-05-24
CVEList
Skype for Business and Lync Spoofing Vulnerability2021-05-11

📋Vendor Advisories

1
Microsoft
Skype for Business and Lync Spoofing Vulnerability2021-05-11
CVE-2021-26421 — Microsoft vulnerability | cvebase