Microsoft

Skype For Business

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2024-20673

  • EPSS 0.41%
  • Veröffentlicht 13.02.2024 18:15:47
  • Zuletzt bearbeitet 21.11.2024 08:52:53

Microsoft Office Remote Code Execution Vulnerability

6.5

CVE-2022-33633

  • EPSS 6%
  • Veröffentlicht 12.07.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 07:08:13

Skype for Business and Lync Remote Code Execution Vulnerability

9.8

CVE-2020-1025

  • EPSS 12.89%
  • Veröffentlicht 14.07.2020 23:15:11
  • Zuletzt bearbeitet 21.11.2024 05:09:35

An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve i...

5.4

CVE-2019-1490

  • EPSS 0.53%
  • Veröffentlicht 10.12.2019 22:15:18
  • Zuletzt bearbeitet 21.11.2024 04:36:47

A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'.

6.5

CVE-2019-1084

  • EPSS 7.82%
  • Veröffentlicht 15.07.2019 19:15:17
  • Zuletzt bearbeitet 21.11.2024 04:35:59

An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, w...

5.4

CVE-2019-0624

  • EPSS 0.43%
  • Veröffentlicht 17.01.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:16:59

A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka "Skype for Business 2015 Spoofing Vulnerability." This affects Skype.

5.9

CVE-2018-8546

  • EPSS 10.95%
  • Veröffentlicht 14.11.2018 01:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:01

A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.

8.8

CVE-2018-8311

  • EPSS 23.58%
  • Veröffentlicht 11.07.2018 00:29:02
  • Zuletzt bearbeitet 21.11.2024 04:13:35

A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microso...

9.3

CVE-2018-8238

  • EPSS 5.26%
  • Veröffentlicht 11.07.2018 00:29:00
  • Zuletzt bearbeitet 21.11.2024 04:13:28

A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.

9.3

CVE-2017-11786

  • EPSS 11.49%
  • Veröffentlicht 13.10.2017 13:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an attacker to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authentication requests, aka "Skype for Business Elevatio...