CVE-2023-34116

8.2HIGH

Key Information

Vendor: Zoom Video Communications, Inc.
Status: Zoom Desktop Client For Windows
Vendor: CVE Published:; 11 July 2023

Summary

Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network access.

Affected Version(s)

Zoom Desktop Client for Windows = before 5.15.0

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Risk change from: 8.8 to: 8.2 - (HIGH)
Oct 22, 2024
Risk change from: 8.8 to: 8.2 - (HIGH)
Sep 19, 2024
Vulnerability published.
Jul 11, 2023
Vulnerability Reserved.
May 25, 2023

Collectors

NVD DatabaseMitre Database

.