Jul 2018:
CVE-2018-8238 Published on July 11, 2018

A security feature bypass vulnerability exists when Skype for Business or Lync do not properly parse UNC path links shared via messages, aka "Skype for Business and Lync Security Feature Bypass Vulnerability." This affects Skype, Microsoft Lync.

NVD

Products Associated with CVE-2018-8238

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Lync

Microsoft Skype For Business

Microsoft Skype

Affected Versions

Microsoft Skype:

Version Business 2016 (32-bit) is affected.
Version Business 2016 (64-bit) is affected.

Microsoft Lync:

Version 2013 Service Pack 1 (32-bit) is affected.
Version 2013 Service Pack 1 (64-bit) is affected.

Exploit Probability

EPSS

5.83%

Percentile

90.44%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Jul 2018: CVE-2018-8238 Published on July 11, 2018

Products Associated with CVE-2018-8238

Affected Versions

Exploit Probability

Jul 2018:
CVE-2018-8238 Published on July 11, 2018