This page lists publicly disclosed CVE vulnerabilities affecting microsoft skype_for_business_server (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-20695 | Skype for Business Information Disclosure Vulnerability | [email protected] | 5.7 | 0.56% | 2024-02-13 | 2026-06-17 |
| CVE-2023-41763 KEV | Skype for Business Elevation of Privilege Vulnerability | [email protected] | 5.3 | 90.35% | 2023-10-10 | 2026-06-17 |
| CVE-2023-36789 | Skype for Business Remote Code Execution Vulnerability | [email protected] | 7.2 | 2.43% | 2023-10-10 | 2026-06-17 |
| CVE-2023-36786 | Skype for Business Remote Code Execution Vulnerability | [email protected] | 7.2 | 2.46% | 2023-10-10 | 2026-06-17 |
| CVE-2023-36780 | Skype for Business Remote Code Execution Vulnerability | [email protected] | 7.2 | 2.56% | 2023-10-10 | 2026-06-17 |
| CVE-2022-26911 | Skype for Business Information Disclosure Vulnerability | [email protected] | 6.5 | 3.30% | 2022-04-15 | 2026-06-17 |
| CVE-2022-26910 | Skype for Business and Lync Spoofing Vulnerability | [email protected] | 5.3 | 2.25% | 2022-04-15 | 2026-06-17 |
| CVE-2021-26422 | Skype for Business and Lync Remote Code Execution Vulnerability | [email protected] | 7.2 | 2.22% | 2021-05-11 | 2026-06-16 |
| CVE-2021-26421 | Skype for Business and Lync Spoofing Vulnerability | [email protected] | 6.5 | 1.41% | 2021-05-11 | 2026-06-16 |
| CVE-2021-24099 | Skype for Business and Lync Denial of Service Vulnerability | [email protected] | 6.5 | 2.89% | 2021-02-25 | 2026-06-16 |
| CVE-2021-24073 | Skype for Business and Lync Spoofing Vulnerability | [email protected] | 6.5 | 1.62% | 2021-02-25 | 2026-06-16 |
| CVE-2019-0798 | A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'. | [email protected] | 6.1 | 2.08% | 2019-04-08 | 2026-06-16 |
| CVE-2015-2536 | Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Elevation of Privilege Vulnerability." | [email protected] | 4.3 | 8.86% | 2015-09-08 | 2026-06-16 |
| CVE-2015-2531 | Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Skype for Business Server and Lync Server XSS Information Disclosure Vulnerability." | [email protected] | 4.3 | 10.89% | 2015-09-08 | 2026-06-16 |