Vulnerability Details CVE-2018-8311
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync clients fail to properly sanitize specially crafted content, aka "Remote Code Execution Vulnerability in Skype For Business and Lync." This affects Skype, Microsoft Lync.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.235
EPSS Ranking 95.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/104624
- http://www.securitytracker.com/id/1041259
- http://www.securitytracker.com/id/1041260
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8311
- http://www.securityfocus.com/bid/104624
- http://www.securitytracker.com/id/1041259
- http://www.securitytracker.com/id/1041260
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8311
Products affected by CVE-2018-8311
-
cpe:2.3:a:microsoft:lync:-
-
cpe:2.3:a:microsoft:skype_for_business:-