cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-21411,https://securityvulnerability.io/vulnerability/CVE-2024-21411,Skype for Consumer Remote Code Execution Vulnerability,"A vulnerability in Skype for Consumer allows remote code execution, potentially enabling attackers to gain unauthorized access and control over affected systems. This vulnerability could compromise user data and application functionality, making it essential for users to update to the latest versions and apply necessary security patches to mitigate risks associated with this flaw.",Microsoft,Skype For Consumer,8.8,HIGH,0.0013000000035390258,false,false,false,true,true,false,false,2024-03-12T16:57:42.580Z,0
CVE-2024-20695,https://securityvulnerability.io/vulnerability/CVE-2024-20695,Skype for Business Information Disclosure Vulnerability,Skype for Business Information Disclosure Vulnerability,Microsoft,Skype For Business Server 2019 Cu7,5.7,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2024-02-13T18:02:28.146Z,0
CVE-2024-20673,https://securityvulnerability.io/vulnerability/CVE-2024-20673,Microsoft Office Remote Code Execution Vulnerability,"A vulnerability exists in Microsoft Office where maliciously crafted documents can potentially allow an attacker to execute arbitrary code on a user's system. This occurs when a user opens a specially crafted Office file that can lead to unauthorized access and control over the affected system. The vulnerability highlights significant risks posed to users, emphasizing the necessity for prompt updates and security best practices to mitigate potential exploits.",Microsoft,"Microsoft Office 2019,Microsoft Office Ltsc 2021,Microsoft Excel 2016,Microsoft Office 2016,Microsoft Powerpoint 2016,Microsoft Visio 2016,Microsoft Word 2016,Microsoft Publisher 2016,Skype For Business 2016",7.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-02-13T18:02:25.889Z,0
CVE-2023-41763,https://securityvulnerability.io/vulnerability/CVE-2023-41763,Skype for Business Elevation of Privilege Vulnerability,Skype for Business Elevation of Privilege Vulnerability,Microsoft,"Skype For Business Server 2015 Cu13,Skype For Business Server 2019 Cu7",5.3,MEDIUM,0.07573000341653824,true,true,false,true,,false,false,2023-10-10T18:15:00.000Z,0
CVE-2023-36786,https://securityvulnerability.io/vulnerability/CVE-2023-36786,Skype for Business Remote Code Execution Vulnerability,Skype for Business Remote Code Execution Vulnerability,Microsoft,"Skype For Business Server 2015 Cu13,Skype For Business Server 2019 Cu7",7.2,HIGH,0.0021299999207258224,false,false,false,false,,false,false,2023-10-10T18:15:00.000Z,0
CVE-2023-36789,https://securityvulnerability.io/vulnerability/CVE-2023-36789,Skype for Business Remote Code Execution Vulnerability,Skype for Business Remote Code Execution Vulnerability,Microsoft,"Skype For Business Server 2019 Cu7,Skype For Business Server 2015 Cu13",7.2,HIGH,0.0019399999873712659,false,false,false,false,,false,false,2023-10-10T18:15:00.000Z,0
CVE-2023-36780,https://securityvulnerability.io/vulnerability/CVE-2023-36780,Skype for Business Remote Code Execution Vulnerability,Skype for Business Remote Code Execution Vulnerability,Microsoft,"Skype For Business Server 2019 Cu7,Skype For Business Server 2015 Cu13",7.2,HIGH,0.0021299999207258224,false,false,false,false,,false,false,2023-10-10T18:15:00.000Z,0
CVE-2022-33633,https://securityvulnerability.io/vulnerability/CVE-2022-33633,Skype for Business and Lync Remote Code Execution Vulnerability,Skype for Business and Lync Remote Code Execution Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2015 Cu12,Skype For Business Server 2019 Cu6",7.2,HIGH,0.04531000182032585,false,false,false,false,,false,false,2022-07-12T23:15:00.000Z,0
CVE-2022-26911,https://securityvulnerability.io/vulnerability/CVE-2022-26911,Skype for Business Information Disclosure Vulnerability,Skype for Business Information Disclosure Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2015 Cu12,Skype For Business Server 2019 Cu6",6.5,MEDIUM,0.0006900000153109431,false,false,false,false,,false,false,2022-04-15T19:05:48.000Z,0
CVE-2022-26910,https://securityvulnerability.io/vulnerability/CVE-2022-26910,Skype for Business and Lync Spoofing Vulnerability,Skype for Business and Lync Spoofing Vulnerability,Microsoft,"Skype For Business Server 2015 Cu12,Skype For Business Server 2019 Cu6",5.3,MEDIUM,0.05527999997138977,false,false,false,false,,false,false,2022-04-15T19:05:46.000Z,0
CVE-2022-24522,https://securityvulnerability.io/vulnerability/CVE-2022-24522,Skype Extension for Chrome Information Disclosure Vulnerability,Skype Extension for Chrome Information Disclosure Vulnerability,Microsoft,Skype Extension For Chrome,6.5,MEDIUM,0.0006900000153109431,false,false,false,false,,false,false,2022-03-09T17:08:28.000Z,0
CVE-2021-26422,https://securityvulnerability.io/vulnerability/CVE-2021-26422,Skype for Business and Lync Remote Code Execution Vulnerability,Skype for Business and Lync Remote Code Execution Vulnerability,Microsoft,"Microsoft Lync Server 2013 Cu10,Skype For Business Server 2019 Cu5,Skype For Business Server 2015 Cu11",7.2,HIGH,0.01874000020325184,false,false,false,false,,false,false,2021-05-11T19:11:13.000Z,0
CVE-2021-26421,https://securityvulnerability.io/vulnerability/CVE-2021-26421,Skype for Business and Lync Spoofing Vulnerability,Skype for Business and Lync Spoofing Vulnerability,Microsoft,"Skype For Business Server 2015 Cu11,Microsoft Lync Server 2013 Cu10",6.5,MEDIUM,0.001769999973475933,false,false,false,false,,false,false,2021-05-11T19:11:12.000Z,0
CVE-2021-24099,https://securityvulnerability.io/vulnerability/CVE-2021-24099,Skype for Business and Lync Denial of Service Vulnerability,Skype for Business and Lync Denial of Service Vulnerability,Microsoft,"Skype For Business Server 2019  Cu2,Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013",6.5,MEDIUM,0.002420000033453107,false,false,false,false,,false,false,2021-02-25T23:01:51.000Z,0
CVE-2021-24073,https://securityvulnerability.io/vulnerability/CVE-2021-24073,Skype for Business and Lync Spoofing Vulnerability,Skype for Business and Lync Spoofing Vulnerability,Microsoft,"Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013",6.5,MEDIUM,0.001769999973475933,false,false,false,false,,false,false,2021-02-25T23:01:37.000Z,0
CVE-2020-24003,https://securityvulnerability.io/vulnerability/CVE-2020-24003,,"Microsoft Skype through 8.59.0.77 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Skype Client's microphone and camera access.",Microsoft,Skype,3.3,LOW,0.00044999999227002263,false,false,false,false,,false,false,2021-01-11T15:26:26.000Z,0
CVE-2020-1025,https://securityvulnerability.io/vulnerability/CVE-2020-1025,Microsoft Office Elevation of Privilege Vulnerability,"An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access.
To exploit this vulnerability, an attacker would need to modify the token.
The update addresses the vulnerability by modifying how Microsoft SharePoint Server and Skype for Business Server validate tokens.
",Microsoft,"Skype For Business Server 2019  Cu2,Skype For Business Server 2015 Cu 8,Microsoft Lync Server 2013,Microsoft Sharepoint Enterprise Server 2016,Microsoft Sharepoint Server 2019,Microsoft Sharepoint Foundation 2013 Service Pack 1",9.8,CRITICAL,0.004209999926388264,false,false,false,false,,false,false,2020-07-14T23:15:00.000Z,0
CVE-2019-1490,https://securityvulnerability.io/vulnerability/CVE-2019-1490,,"A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'.",Microsoft,Skype For Business Server 2019  Cu2,5.4,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2019-12-10T21:41:08.000Z,0
CVE-2019-1084,https://securityvulnerability.io/vulnerability/CVE-2019-1084,,"An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, which, when added to conversations, remain invisible. This security update addresses the issue by validating display names upon creation in Microsoft Exchange, and by rendering invalid display names correctly in Microsoft Outlook clients., aka 'Microsoft Exchange Information Disclosure Vulnerability'.",Microsoft,"Microsoft Exchange Server,Microsoft Outlook,Microsoft Office,Microsoft Lync,Microsoft Lync Basic,Microsoft Outlook For Android,Skype For Business,Skype For Business Basic,Office 365 Proplus,Microsoft Exchange Server 2016,Microsoft Exchange Server 2019,Microsoft Exchange Server 2013,Mail And Calendar,Outlook For iOS",6.5,MEDIUM,0.0025100000202655792,false,false,false,false,,false,false,2019-07-15T18:56:21.000Z,0
CVE-2019-0932,https://securityvulnerability.io/vulnerability/CVE-2019-0932,,"An information disclosure vulnerability exists in Skype for Android, aka 'Skype for Android Information Disclosure Vulnerability'.",Microsoft,Skype,5.9,MEDIUM,0.004120000172406435,false,false,false,false,,false,false,2019-05-16T18:17:02.000Z,0
CVE-2019-0798,https://securityvulnerability.io/vulnerability/CVE-2019-0798,,"A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.",Microsoft,"Skype For Business Server 2015,Microsoft Lync Server 2013",6.1,MEDIUM,0.0014299999456852674,false,false,false,false,,false,false,2019-04-09T02:33:50.000Z,0
CVE-2019-0624,https://securityvulnerability.io/vulnerability/CVE-2019-0624,,"A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka ""Skype for Business 2015 Spoofing Vulnerability."" This affects Skype.",Microsoft,Skype,5.4,MEDIUM,0.0009699999936856329,false,false,false,false,,false,false,2019-01-17T18:00:00.000Z,0
CVE-2019-0622,https://securityvulnerability.io/vulnerability/CVE-2019-0622,,"An elevation of privilege vulnerability exists when Skype for Andriod fails to properly handle specific authentication requests, aka ""Skype for Android Elevation of Privilege Vulnerability."" This affects Skype 8.35.",Microsoft,Skype,4.6,MEDIUM,0.0007099999929778278,false,false,false,false,,false,false,2019-01-08T21:00:00.000Z,0
CVE-2018-8546,https://securityvulnerability.io/vulnerability/CVE-2018-8546,,"A denial of service vulnerability exists in Skype for Business, aka ""Microsoft Skype for Business Denial of Service Vulnerability."" This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.",Microsoft,"Skype,Microsoft Office,Office,Microsoft Lync",5.9,MEDIUM,0.007269999943673611,false,false,false,false,,false,false,2018-11-14T01:00:00.000Z,0
CVE-2018-8311,https://securityvulnerability.io/vulnerability/CVE-2018-8311,,"A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka ""Remote Code Execution Vulnerability in Skype For Business and Lync."" This affects Skype, Microsoft Lync.",Microsoft,"Skype,Microsoft Lync",8.8,HIGH,0.5068699717521667,false,false,false,false,,false,false,2018-07-11T00:00:00.000Z,0