cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2022-33633,https://securityvulnerability.io/vulnerability/CVE-2022-33633,Skype for Business and Lync Remote Code Execution Vulnerability,Skype for Business and Lync Remote Code Execution Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2015 Cu12,Skype For Business Server 2019 Cu6",7.2,HIGH,0.04531000182032585,false,false,false,false,,false,false,2022-07-12T23:15:00.000Z,0 CVE-2022-26911,https://securityvulnerability.io/vulnerability/CVE-2022-26911,Skype for Business Information Disclosure Vulnerability,Skype for Business Information Disclosure Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2015 Cu12,Skype For Business Server 2019 Cu6",6.5,MEDIUM,0.0006900000153109431,false,false,false,false,,false,false,2022-04-15T19:05:48.000Z,0 CVE-2021-26422,https://securityvulnerability.io/vulnerability/CVE-2021-26422,Skype for Business and Lync Remote Code Execution Vulnerability,Skype for Business and Lync Remote Code Execution Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2019 Cu5,Skype For Business Server 2015 Cu11",7.2,HIGH,0.01874000020325184,false,false,false,false,,false,false,2021-05-11T19:11:13.000Z,0 CVE-2021-26421,https://securityvulnerability.io/vulnerability/CVE-2021-26421,Skype for Business and Lync Spoofing Vulnerability,Skype for Business and Lync Spoofing Vulnerability,Microsoft,"Skype For Business Server 2015 Cu11,Microsoft Lync Server 2013 Cu10",6.5,MEDIUM,0.001769999973475933,false,false,false,false,,false,false,2021-05-11T19:11:12.000Z,0 CVE-2021-24099,https://securityvulnerability.io/vulnerability/CVE-2021-24099,Skype for Business and Lync Denial of Service Vulnerability,Skype for Business and Lync Denial of Service Vulnerability,Microsoft,"Skype For Business Server 2019 Cu2,Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013",6.5,MEDIUM,0.002420000033453107,false,false,false,false,,false,false,2021-02-25T23:01:51.000Z,0 CVE-2021-24073,https://securityvulnerability.io/vulnerability/CVE-2021-24073,Skype for Business and Lync Spoofing Vulnerability,Skype for Business and Lync Spoofing Vulnerability,Microsoft,"Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013",6.5,MEDIUM,0.001769999973475933,false,false,false,false,,false,false,2021-02-25T23:01:37.000Z,0 CVE-2020-1025,https://securityvulnerability.io/vulnerability/CVE-2020-1025,Microsoft Office Elevation of Privilege Vulnerability,"An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access. To exploit this vulnerability, an attacker would need to modify the token. The update addresses the vulnerability by modifying how Microsoft SharePoint Server and Skype for Business Server validate tokens. ",Microsoft,"Skype For Business Server 2019 Cu2,Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013,Microsoft Sharepoint Enterprise Server 2016,Microsoft Sharepoint Server 2019,Microsoft Sharepoint Foundation 2013 Service Pack 1",9.8,CRITICAL,0.004209999926388264,false,false,false,false,,false,false,2020-07-14T23:15:00.000Z,0 CVE-2019-1209,https://securityvulnerability.io/vulnerability/CVE-2019-1209,,"An information disclosure vulnerability exists in Lync 2013, aka 'Lync 2013 Information Disclosure Vulnerability'.",Microsoft,Microsoft Lync Server,6.5,MEDIUM,0.03265000134706497,false,false,false,false,,false,false,2019-09-11T21:24:57.000Z,0 CVE-2019-1084,https://securityvulnerability.io/vulnerability/CVE-2019-1084,,"An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, which, when added to conversations, remain invisible. This security update addresses the issue by validating display names upon creation in Microsoft Exchange, and by rendering invalid display names correctly in Microsoft Outlook clients., aka 'Microsoft Exchange Information Disclosure Vulnerability'.",Microsoft,"Microsoft Exchange Server,Microsoft Outlook,Microsoft Office,Microsoft Lync,Microsoft Lync Basic,Microsoft Outlook For Android,Skype For Business,Skype For Business Basic,Office 365 Proplus,Microsoft Exchange Server 2016,Microsoft Exchange Server 2019,Microsoft Exchange Server 2013,Mail And Calendar,Outlook For iOS",6.5,MEDIUM,0.0025100000202655792,false,false,false,false,,false,false,2019-07-15T18:56:21.000Z,0 CVE-2019-1029,https://securityvulnerability.io/vulnerability/CVE-2019-1029,,"A denial of service vulnerability exists in Skype for Business, aka 'Skype for Business and Lync Server Denial of Service Vulnerability'.",Microsoft,Microsoft Lync Server,5.9,MEDIUM,0.0022499999031424522,false,false,false,false,,false,false,2019-06-12T13:49:40.000Z,0 CVE-2019-0798,https://securityvulnerability.io/vulnerability/CVE-2019-0798,,"A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.",Microsoft,"Skype For Business Server 2015,Microsoft Lync Server 2013",6.1,MEDIUM,0.0014299999456852674,false,false,false,false,,false,false,2019-04-09T02:33:50.000Z,0 CVE-2018-8546,https://securityvulnerability.io/vulnerability/CVE-2018-8546,,"A denial of service vulnerability exists in Skype for Business, aka ""Microsoft Skype for Business Denial of Service Vulnerability."" This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.",Microsoft,"Skype,Microsoft Office,Office,Microsoft Lync",5.9,MEDIUM,0.007269999943673611,false,false,false,false,,false,false,2018-11-14T01:00:00.000Z,0 CVE-2018-8474,https://securityvulnerability.io/vulnerability/CVE-2018-8474,,"A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka ""Lync for Mac 2011 Security Feature Bypass Vulnerability."" This affects Microsoft Lync.",Microsoft,Microsoft Lync,7.5,HIGH,0.11665000021457672,false,false,false,false,,false,false,2018-09-13T00:00:00.000Z,0 CVE-2018-8238,https://securityvulnerability.io/vulnerability/CVE-2018-8238,,"A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka ""Skype for Business and Lync Security Feature Bypass Vulnerability."" This affects Skype, Microsoft Lync.",Microsoft,"Skype,Microsoft Lync",7.8,HIGH,0.00279000005684793,false,false,false,false,,false,false,2018-07-11T00:00:00.000Z,0 CVE-2018-8311,https://securityvulnerability.io/vulnerability/CVE-2018-8311,,"A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka ""Remote Code Execution Vulnerability in Skype For Business and Lync."" This affects Skype, Microsoft Lync.",Microsoft,"Skype,Microsoft Lync",8.8,HIGH,0.5068699717521667,false,false,false,false,,false,false,2018-07-11T00:00:00.000Z,0