Every CVE whose affected-product data names Microsoft Skype, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2017-6517 — CVSS 9.8 (critical): Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the…
CVE-2017-9948 — CVSS 8.8 (high): A stack buffer overflow vulnerability has been discovered in Microsoft Skype 7.2, 7.35, and 7.36 before 7.37, involving MSFTEDIT.DLL…
CVE-2018-0595 — CVSS 7.8 (high): Untrusted search path vulnerability in the installer of Skype for Windows allows an attacker to gain privileges via a Trojan horse DLL in…
CVE-2016-5720 — CVSS 7.8 (high): Multiple untrusted search path vulnerabilities in Microsoft Skype allow local users to execute arbitrary code and conduct DLL hijacking…
CVE-2018-0594 — CVSS 7.8 (high): Untrusted search path vulnerability in Skype for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified…
CVE-2019-0932 — CVSS 5.9 (medium): An information disclosure vulnerability exists in Skype for Android, aka 'Skype for Android Information Disclosure Vulnerability'.
CVE-2019-0622 — CVSS 4.6 (medium): An elevation of privilege vulnerability exists when Skype for Andriod fails to properly handle specific authentication requests, aka "Skype…
CVE-2020-24003 — CVSS 3.3 (low): Microsoft Skype through 8.59.0.77 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's…