Lync Server Security Vulnerabilities and Issues — Lync Server CVE List

Lucene search

MicrosoftLync Server

3 matches found

CVE•added 2015/09/09 12:59 a.m.•56 views

CVE-2015-2536

Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability."

4.3CVSS5.2AI score0.10443EPSS

CVE•added 2015/09/09 12:59 a.m.•55 views

CVE-2015-2531

Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability."

4.3CVSS5AI score0.15202EPSS

CVE•added 2015/09/09 12:59 a.m.•38 views

CVE-2015-2532

Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Lync Server XSS Information Disclosure Vulnerability."

4.3CVSS4.9AI score0.11186EPSS