CVE-2018-8546

5.9MEDIUM

Key Information:

Vendor: Microsoft
Status: Skype; Microsoft Office; Office; Microsoft Lync
Vendor: CVE Published:; 14 November 2018

Summary

A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype.

Affected Version(s)

Microsoft Lync 2013 Service Pack 1 (32-bit)

Microsoft Lync 2013 Service Pack 1 (64-bit)

Microsoft Lync Basic 2013 Service Pack 1 (32-bit)

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/105802

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1042125

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2018
Vulnerability Reserved
Mar 14, 2018

Collectors

NVD DatabaseMitre Database