Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lync vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-4070
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Lync XSS Information Disclosure Vulnerability."
Microsoft Lync Server 2013
445
VMScore
CVE-2014-4071
The Server in Microsoft Lync Server 2013 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon hang) via a crafted request, aka "Lync Denial of Service Vulnerability."
Microsoft Lync Server 2013
445
VMScore
CVE-2018-8474
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
Microsoft Lync For Mac 2011
1 Github repository
445
VMScore
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote malicious users to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."
Microsoft Lync For Mac 2011
605
VMScore
CVE-2018-8311
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microsoft Lync.
Microsoft Skype For Business -
Microsoft Lync -
1 Article
935
VMScore
CVE-2015-2510
Buffer overflow in the Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2, Office 2007 SP3, Office 2010 SP2, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, and Live Meeting 2007 Console allows remote malicious users to execute a...
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Lync 2013
Microsoft Live Meeting Console 2007
Microsoft Lync 2010
Microsoft Office 2007
Microsoft Office 2010
1 EDB exploit
383
VMScore
CVE-2018-8546
A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.
Microsoft Office 2019
Microsoft Skype For Business Basic 2016
Microsoft Lync Basic 2013
Microsoft Lync 2013
Microsoft Office 365 Proplus -
Microsoft Skype For Business 2016
828
VMScore
CVE-2018-8238
A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.
Microsoft Skype For Business 2016
Microsoft Lync 2013
828
VMScore
CVE-2017-11786
Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an malicious user to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authentication requests, aka "Skype for Business Elevation of Privilege Vuln...
Microsoft Skype For Business 2016
Microsoft Lync 2013
383
VMScore
CVE-2015-2536
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnera...
Microsoft Lync Server 2013
Microsoft Skype For Business Server 2015
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »