Skype for business server

This hub aggregates every CVE we track for Skype for business server, a product in the communications space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Skype for business server.

• CVE-2024-20695Skype for Business Information Disclosure Vulnerability5.7Feb 13, 2024
• CVE-2023-36780Skype for Business Remote Code Execution Vulnerability7.2Oct 10, 2023
• CVE-2023-36786Skype for Business Remote Code Execution Vulnerability7.2Oct 10, 2023
• CVE-2023-36789Skype for Business Remote Code Execution Vulnerability7.2Oct 10, 2023
• CVE-2023-41763Skype for Business Elevation of Privilege VulnerabilityKEV5.3Oct 10, 2023
• CVE-2022-33633Skype for Business and Lync Remote Code Execution Vulnerability7.2Jul 12, 2022
• CVE-2022-26911Skype for Business Information Disclosure Vulnerability6.5Apr 15, 2022
• CVE-2022-26910Skype for Business and Lync Spoofing Vulnerability5.3Apr 15, 2022
• CVE-2021-26422Skype for Business and Lync Remote Code Execution Vulnerability7.2May 11, 2021
• CVE-2021-26421Skype for Business and Lync Spoofing Vulnerability6.5May 11, 2021
• CVE-2021-24099Skype for Business and Lync Denial of Service Vulnerability6.5Feb 25, 2021
• CVE-2021-24073Skype for Business and Lync Spoofing Vulnerability6.5Feb 25, 2021
• CVE-2020-1025Microsoft Office Elevation of Privilege Vulnerability9.8Jul 14, 2020
• CVE-2019-1490A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'.5.4Dec 10, 2019
• CVE-2019-0798A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.6.1Apr 9, 2019