vulnerability

Microsoft Office: CVE-2018-8238: Skype for Business and Lync Security Feature Bypass Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Jul 11, 2018	Jun 20, 2023	Jun 20, 2023

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Jul 11, 2018

Added

Jun 20, 2023

Modified

Jun 20, 2023

Description

A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.

Solution

microsoft-skype_for_business_2016-kb4022221

References

BID-104619
CVE-2018-8238
https://attackerkb.com/topics/CVE-2018-8238
URL-https://support.microsoft.com/help/4022221

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today