Microsoft Skype For Business Server 2015 Cu 8 vulnerabilities
3 known vulnerabilities affecting microsoft/skype_for_business_server_2015_cu_8.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-24073HIGHCVSS 7.1≥ 2015 CU 8, < publication2021-02-25
CVE-2021-24073 [HIGH] CVE-2021-24073: Skype for Business and Lync Spoofing Vulnerability
Skype for Business and Lync Spoofing Vulnerability
cvelistv5nvd
CVE-2021-24099MEDIUMCVSS 6.5≥ 2015 CU 8, < publication2021-02-25
CVE-2021-24099 [MEDIUM] CVE-2021-24099: Skype for Business and Lync Denial of Service Vulnerability
Skype for Business and Lync Denial of Service Vulnerability
cvelistv5nvd
CVE-2020-1025CRITICALCVSS 9.8≥ 2015 CU 8, < publication2020-07-14
CVE-2020-1025 [CRITICAL] CWE-20 CVE-2020-1025: An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Busine
An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access.
To exploit this vulnerability, an attacker would need to modify the token.
The update
cvelistv5nvd