16 matches found
CVE-2020-1025
An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access.To exploit this vulnerability, an ...
CVE-2023-41763
Skype for Business Elevation of Privilege Vulnerability
CVE-2022-33633
Skype for Business and Lync Remote Code Execution Vulnerability
CVE-2022-26911
Skype for Business Information Disclosure Vulnerability
CVE-2024-20695
Skype for Business Information Disclosure Vulnerability
CVE-2022-26910
Skype for Business and Lync Spoofing Vulnerability
CVE-2021-26422
Skype for Business and Lync Remote Code Execution Vulnerability
CVE-2021-24099
Skype for Business and Lync Denial of Service Vulnerability
CVE-2021-26421
Skype for Business and Lync Spoofing Vulnerability
CVE-2019-0798
A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.
CVE-2023-36789
Skype for Business Remote Code Execution Vulnerability
CVE-2021-24073
Skype for Business and Lync Spoofing Vulnerability
CVE-2023-36780
Skype for Business Remote Code Execution Vulnerability
CVE-2023-36786
Skype for Business Remote Code Execution Vulnerability
CVE-2015-2536
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability."
CVE-2015-2531
Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability."