Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lync vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-4070
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Lync XSS Information Disclosure Vulnerability."
Microsoft Lync Server 2013
5
CVSSv2
CVE-2014-4071
The Server in Microsoft Lync Server 2013 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon hang) via a crafted request, aka "Lync Denial of Service Vulnerability."
Microsoft Lync Server 2013
5
CVSSv2
CVE-2018-8474
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
Microsoft Lync For Mac 2011
1 Github repository
5
CVSSv2
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote malicious users to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."
Microsoft Lync For Mac 2011
6.8
CVSSv2
CVE-2018-8311
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microsoft Lync.
Microsoft Skype For Business -
Microsoft Lync -
1 Article
9.3
CVSSv2
CVE-2015-2510
Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote malicious users to execute a...
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Lync 2013
Microsoft Live Meeting Console 2007
Microsoft Lync 2010
Microsoft Office 2007
Microsoft Office 2010
1 EDB exploit
4.3
CVSSv2
CVE-2018-8546
A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.
Microsoft Office 2019
Microsoft Skype For Business Basic 2016
Microsoft Lync Basic 2013
Microsoft Lync 2013
Microsoft Office 365 Proplus -
Microsoft Skype For Business 2016
9.3
CVSSv2
CVE-2017-11786
Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an malicious user to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authentication requests, aka "Skype for Business Elevation of Privilege Vuln...
Microsoft Skype For Business 2016
Microsoft Lync 2013
9.3
CVSSv2
CVE-2018-8238
A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.
Microsoft Skype For Business 2016
Microsoft Lync 2013
4.3
CVSSv2
CVE-2019-0798
A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.
Microsoft Lync Server 2013
Microsoft Skype For Business Server 2015
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »