CVE-2019-0798

A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business and Lync Spoofing Vulnerability'.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:lync_server:2013:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:skype_for_business_server:2015:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-04-09 03:29

Updated : 2024-02-04 20:20


NVD link : CVE-2019-0798

Mitre link : CVE-2019-0798

CVE.ORG link : CVE-2019-0798


JSON object : View

Products Affected

microsoft

  • skype_for_business_server
  • lync_server
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')