Vulnerability in Microsoft Lync
CVE-2018-8311
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Sky…
EPSS: 0.283 (96.6th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Lync — versions 2013 Service Pack 1 (32-bit), 2013 Service Pack 1 (64-bit)
- Microsoft Skype — versions Business 2016 (32-bit), Business 2016 (64-bit)
References
- 104624 (vdb-entry, x_refsource_BID)
- 1041259 (vdb-entry, x_refsource_SECTRACK)
- 1041260 (vdb-entry, x_refsource_SECTRACK)
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8311 (x_refsource_CONFIRM)