Skype For Business Server@2015 Security Vulnerabilities and Issues — Skype For Business Server@2015 CVE List

A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.

6.1CVSS6.2AI score0.00554EPSS

CVE•added 2023/10/10 6:15 p.m.•87 views

CVE-2023-36789

Skype for Business Remote Code Execution Vulnerability

7.2CVSS7.3AI score0.00725EPSS

CVE•added 2021/02/25 11:15 p.m.•85 views

CVE-2021-24073

Skype for Business and Lync Spoofing Vulnerability

7.1CVSS6.4AI score0.00453EPSS

CVE•added 2023/10/10 6:15 p.m.•84 views

CVE-2023-36780

Skype for Business Remote Code Execution Vulnerability

7.2CVSS7.3AI score0.00702EPSS

CVE•added 2023/10/10 6:15 p.m.•76 views

CVE-2023-36786

Skype for Business Remote Code Execution Vulnerability

7.2CVSS7.3AI score0.00726EPSS

CVE•added 2015/09/09 12:59 a.m.•56 views

CVE-2015-2536

Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability."

4.3CVSS5.2AI score0.10443EPSS

CVE•added 2015/09/09 12:59 a.m.•55 views

CVE-2015-2531

Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability."

4.3CVSS5AI score0.15202EPSS