CVE-2018-8474

Опубликовано: 13 сент. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Средний

Описание

A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.

Ссылки

http://www.securityfocus.com/bid/105268
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041633
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8474
Vendor Advisory
https://www.exploit-db.com/exploits/45936/
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/105268
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041633
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8474
Vendor Advisory
https://www.exploit-db.com/exploits/45936/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:lync_for_mac:2011:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.24441

Средний

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-8474

msrc

больше 7 лет назад

Lync for Mac 2011 Security Feature Bypass Vulnerability

GHSA-f9xx-wcf7-jwv3

CVSS3: 7.5

github

больше 3 лет назад

BDU:2019-00020

CVSS3: 6.3

fstec