Vulnerabilities > Microsoft > Skype FOR Business Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-25 | CVE-2021-24073 | Unspecified vulnerability in Microsoft Lync Server and Skype for Business Server Skype for Business and Lync Spoofing Vulnerability | 6.5 |
| 2019-04-09 | CVE-2019-0798 | Cross-site Scripting vulnerability in Microsoft Lync Server and Skype FOR Business Server A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'. | 4.3 |
| 2015-09-09 | CVE-2015-2536 | Cross-site Scripting vulnerability in Microsoft Lync Server and Skype for Business Server Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability." | 4.3 |
| 2015-09-09 | CVE-2015-2531 | Cross-site Scripting vulnerability in Microsoft Lync Server and Skype for Business Server Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability." | 4.3 |