Microsoft Skype For Business Server vulnerabilities
14 known vulnerabilities affecting microsoft/skype_for_business_server.
Total CVEs
14
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
HIGH6MEDIUM8
Vulnerabilities
Page 1 of 1
CVE-2024-20695MEDIUMCVSS 5.7v20192024-02-13
CVE-2024-20695 [MEDIUM] CWE-284 CVE-2024-20695: Skype for Business Information Disclosure Vulnerability
Skype for Business Information Disclosure Vulnerability
nvd
CVE-2023-36780HIGHCVSS 7.2v2015v20192023-10-10
CVE-2023-36780 [HIGH] CWE-426 CVE-2023-36780: Skype for Business Remote Code Execution Vulnerability
Skype for Business Remote Code Execution Vulnerability
nvd
CVE-2023-36789HIGHCVSS 7.2v2015v20192023-10-10
CVE-2023-36789 [HIGH] CWE-94 CVE-2023-36789: Skype for Business Remote Code Execution Vulnerability
Skype for Business Remote Code Execution Vulnerability
nvd
CVE-2023-36786HIGHCVSS 7.2v2015v20192023-10-10
CVE-2023-36786 [HIGH] CWE-36 CVE-2023-36786: Skype for Business Remote Code Execution Vulnerability
Skype for Business Remote Code Execution Vulnerability
nvd
CVE-2023-41763MEDIUMCVSS 5.3KEVPoCv2015v20192023-10-10
CVE-2023-41763 [MEDIUM] CWE-918 CVE-2023-41763: Skype for Business Elevation of Privilege Vulnerability
Skype for Business Elevation of Privilege Vulnerability
nvd
CVE-2022-26910MEDIUMCVSS 5.3v2015v20192022-04-15
CVE-2022-26910 [MEDIUM] CWE-290 CVE-2022-26910: Skype for Business and Lync Spoofing Vulnerability
Skype for Business and Lync Spoofing Vulnerability
nvd
CVE-2022-26911MEDIUMCVSS 6.5v2015v20192022-04-15
CVE-2022-26911 [MEDIUM] CVE-2022-26911: Skype for Business Information Disclosure Vulnerability
Skype for Business Information Disclosure Vulnerability
nvd
CVE-2021-26422HIGHCVSS 7.2v2015v20192021-05-11
CVE-2021-26422 [HIGH] CVE-2021-26422: Skype for Business and Lync Remote Code Execution Vulnerability
Skype for Business and Lync Remote Code Execution Vulnerability
nvd
CVE-2021-26421HIGHCVSS 7.1v20152021-05-11
CVE-2021-26421 [MEDIUM] CVE-2021-26421: Skype for Business and Lync Spoofing Vulnerability
Skype for Business and Lync Spoofing Vulnerability
nvd
CVE-2021-24073HIGHCVSS 7.1v20152021-02-25
CVE-2021-24073 [MEDIUM] CVE-2021-24073: Skype for Business and Lync Spoofing Vulnerability
Skype for Business and Lync Spoofing Vulnerability
nvd
CVE-2021-24099MEDIUMCVSS 6.5v2015v20192021-02-25
CVE-2021-24099 [MEDIUM] CVE-2021-24099: Skype for Business and Lync Denial of Service Vulnerability
Skype for Business and Lync Denial of Service Vulnerability
nvd
CVE-2019-0798MEDIUMCVSS 6.1v20152019-04-09
CVE-2019-0798 [MEDIUM] CWE-79 CVE-2019-0798: A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sa
A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.
nvd
CVE-2015-2531MEDIUMCVSS 4.3v20152015-09-09
CVE-2015-2531 [MEDIUM] CWE-79 CVE-2015-2531: Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skyp
Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability."
nvd
CVE-2015-2536MEDIUMCVSS 4.3v20152015-09-09
CVE-2015-2536 [MEDIUM] CWE-79 CVE-2015-2536: Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability."
nvd