Description
Skype for Business Elevation of Privilege Vulnerability
CISA Known Exploited Vulnerability
Date added 2023-10-10 | Due date 2023-10-31
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Problem types
CWE-918: Server-Side Request Forgery (SSRF)
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-41763 (Skype for Business Elevation of Privilege Vulnerability)
