CVE-2023-39216

9.6CRITICAL

Key Information

Status
Zoom Desktop Client For Windows
Vendor
CVE Published:
8 August 2023

Summary

Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.

Affected Version(s)

Zoom Desktop Client for Windows = before 5.14.7

References

CVSS V3.1

Score:
9.6
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.