threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft lync server
Product
microsoft lync server
16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2022-33633
all versions
Skype for Business and Lync Remote Code Execution Vulnerability
7.2
HIGH
CVE-2022-26911
all versions
Skype for Business Information Disclosure Vulnerability
6.5
MEDIUM
CVE-2021-26422
all versions
Skype for Business and Lync Remote Code Execution Vulnerability
7.2
HIGH
CVE-2021-26421
all versions
Skype for Business and Lync Spoofing Vulnerability
6.5
MEDIUM
CVE-2021-24099
all versions
Skype for Business and Lync Denial of Service Vulnerability
6.5
MEDIUM
CVE-2021-24073
all versions
Skype for Business and Lync Spoofing Vulnerability
6.5
MEDIUM
CVE-2019-1029
all versions
A denial of service vulnerability exists in Skype for Business. An attacker who successfully exploited the vulnerability could cau
5.9
MEDIUM
CVE-2019-0798
all versions
A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted req
6.1
MEDIUM
CVE-2015-2536
all versions
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers
CVE-2015-2532
all versions
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or H
CVE-2015-2531
all versions
Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 all
CVE-2014-4071
all versions
The Server in Microsoft Lync Server 2013 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon
CVE-2014-4070
all versions
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 allows remote attackers to inj
CVE-2014-4068
all versions
The Response Group Service in Microsoft Lync Server 2010 and 2013 and the Core Components in Lync Server 2013 do not properly hand
CVE-2014-1823
all versions
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2010 and 2013 allows remote attacke
CVE-2013-1302
all versions
Microsoft Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, and Lync Server 2013 do not properly handle objects in memory, whic
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin