First published: Tue Apr 12 2022(Updated: )
Skype for Business and Lync Spoofing Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Skype For Business Server | =2015-cu12 | |
Microsoft Skype For Business Server | =2019-cu6 | |
Microsoft Skype for Business Server 2019 CU6 | ||
Microsoft Skype for Business Server 2015 CU12 | ||
=2015-cu12 | ||
=2019-cu6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-26910 is a Skype for Business and Lync Spoofing Vulnerability that allows an attacker to spoof an authenticated user's identity.
Microsoft Skype for Business Server 2015 CU12 and Microsoft Skype for Business Server 2019 CU6 are affected by CVE-2022-26910.
CVE-2022-26910 has a severity rating of 5.3 (High).
To fix CVE-2022-26910, update your Microsoft Skype for Business Server to the recommended versions: 2015 CU12 or 2019 CU6.
You can find more information about CVE-2022-26910 on the Microsoft Security Response Center website.