What is CVE-2019-0622?

CVE-2019-0622 is a vulnerability in Microsoft Skype. Published 2019-01-08.

Is CVE-2019-0622 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft Skype

CVE-2019-0622

An elevation of privilege vulnerability exists when Skype for Andriod fails to properly handle specific authentication requests, aka "Skype for Android Elevation of Privilege Vulnerability." This affects Skype 8.35.

EPSS: 0.008 (74.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Skype — versions 8.35 when installed on Android Devices

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

106465 (vdb-entry, x_refsource_BID)
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0622 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2019-0622?: CVE-2019-0622 is a vulnerability in Microsoft Skype. Published 2019-01-08.
Is CVE-2019-0622 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.