2 matches found
CVE-2019-1490
A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'...
CVE-2019-1490
CVE-2019-1490 affects Skype for Business Server; the root cause is improper sanitization of specially crafted requests, enabling cross-site scripting and spoofed UI when a user visits a crafted URL. An authenticated attacker can exploit by sending such a request; exploitation typically requires u...