Lucene search

K

China National Vulnerability DatabaseCNVD-2023-02192

HistoryApr 15, 2022 - 12:00 a.m.

Microsoft Skype for Business and Lync Spoofing Vulnerability

2022-04-1500:00:00

China National Vulnerability Database

www.cnvd.org.cn

6

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

Microsoft Skype for Business Server is a secure and unified communications platform from Microsoft Corporation that provides instant messaging (IM), audio and video calling, online conferencing, online status information, and sharing capabilities. A spoofing vulnerability exists that can be exploited by attackers to conduct spoofing attacks.

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

Related for CNVD-2023-02192

mscve1 prion1 cve1 mskb1 nessus1 kaspersky1 rapid7blog1