Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lync vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-2532
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Lync Server XSS Information Disclosure Vulnerability."
Microsoft Lync Server 2013
4.3
CVSSv2
CVE-2014-4070
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Lync XSS Information Disclosure Vulnerability."
Microsoft Lync Server 2013
5
CVSSv2
CVE-2018-8474
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
Microsoft Lync For Mac 2011
1 Github repository
5
CVSSv2
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote malicious users to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."
Microsoft Lync For Mac 2011
6.8
CVSSv2
CVE-2018-8311
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microsoft Lync.
Microsoft Skype For Business -
Microsoft Lync -
1 Article
9.3
CVSSv2
CVE-2015-2510
Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote malicious users to execute a...
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Lync 2013
Microsoft Live Meeting Console 2007
Microsoft Lync 2010
Microsoft Office 2007
Microsoft Office 2010
1 EDB exploit
4.3
CVSSv2
CVE-2018-8546
A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.
Microsoft Office 2019
Microsoft Skype For Business Basic 2016
Microsoft Lync Basic 2013
Microsoft Lync 2013
Microsoft Office 365 Proplus -
Microsoft Skype For Business 2016
9.3
CVSSv2
CVE-2017-11786
Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an malicious user to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authentication requests, aka "Skype for Business Elevation of Privilege Vuln...
Microsoft Skype For Business 2016
Microsoft Lync 2013
9.3
CVSSv2
CVE-2018-8238
A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.
Microsoft Skype For Business 2016
Microsoft Lync 2013
4.3
CVSSv2
CVE-2015-2531
Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Informati...
Microsoft Lync Server 2013
Microsoft Skype For Business Server 2015
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »