Information Disclosure Vulnerability in Skype for Android by Microsoft
CVE-2019-0932

5.9MEDIUM

Key Information:

Vendor: Microsoft
Status: Skype
Vendor: CVE Published:; 16 May 2019

Summary

An information disclosure vulnerability has been identified in Skype for Android that may allow unauthorized users to access sensitive information. This issue arises when certain data is improperly managed within the application, potentially exposing user data and communications. Users are urged to update to the latest version to mitigate any risks associated with this vulnerability.

Affected Version(s)

Skype 8.35 when installed on Android Devices

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 16, 2019
Vulnerability Reserved
Nov 26, 2018