CVE-2023-39211

Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:zoom:*:*:*:*:*:windows:*:*

History

21 Nov 2024, 08:14

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.8
v2 : unknown
v3 : 8.8
References () https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory () https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory

27 Sep 2024, 19:15

Type Values Removed Values Added
CWE CWE-347

Information

Published : 2023-08-08 22:15

Updated : 2024-11-21 08:14


NVD link : CVE-2023-39211

Mitre link : CVE-2023-39211

CVE.ORG link : CVE-2023-39211


JSON object : View

Products Affected

zoom

  • rooms
  • zoom
CWE
CWE-347

Improper Verification of Cryptographic Signature

CWE-269

Improper Privilege Management