CVE-2022-26910 is a vulnerability in Microsoft Skype For Business Server
Published on April 15, 2022
Skype for Business and Lync Spoofing Vulnerability
Skype for Business and Lync Spoofing Vulnerability
Weakness Type
Authentication Bypass by Spoofing
This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.
Products Associated with CVE-2022-26910
Want to know whenever a new CVE is published for Microsoft Skype For Business Server? stack.watch will email you.
Affected Versions
Microsoft Skype for Business Server 2015 CU12:- Version 9319.0 and below 9319.628 is affected.
- Version 2046.0 and below 2046.396 is affected.
Exploit Probability
EPSS
0.74%
Percentile
72.69%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.