Vulnerability Details CVE-2015-2532
Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Lync Server XSS Information Disclosure Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.105
EPSS Ranking 92.8%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2015-2532
-
cpe:2.3:a:microsoft:lync_server:2013