Skype for Business Info Disclosure via Unauth Access
CVE-2024-20695 Published on February 13, 2024

Skype for Business Information Disclosure Vulnerability
Skype for Business Information Disclosure Vulnerability

Vendor Advisory NVD

Weakness Type

What is an Authorization Vulnerability?

The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

CVE-2024-20695 has been classified to as an Authorization vulnerability or weakness.


Products Associated with CVE-2024-20695

stack.watch emails you whenever new vulnerabilities are published in Microsoft Skype For Business Server or Microsoft Skype For Business. Just hit a watch button to start following.

Microsoft Skype For Business Server
 
Microsoft Skype For Business
 

Affected Versions

Microsoft Skype for Business Server 2019 CU7 Version N/A is affected by CVE-2024-20695

Exploit Probability

EPSS
0.12%
Percentile
31.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.