Lucene search
HistoryJul 11, 2023 - 5:15 p.m.
CVE-2023-34116
cve-2023-34116
zoom
desktop client
windows
input validation
privilege escalation
network access
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.9%
Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network access.
Affected configurations
Node
zoomzoomRange<5.15.0windows
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Zoom Desktop Client for Windows",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "before 5.15.0"
}
]
}
]Related
openvas
openvas
prion
prion
Input validation
2023-07-11 17:15:00
cvelist
cvelist
CVE-2023-34116
2023-07-11 16:56:16
nessus
nessus
Zoom Client for Meetings < 5.15.0 Vulnerability (ZSB-23018)
2023-11-03 00:00:00
nvd
nvd
CVE-2023-34116
2023-07-11 17:15:13
malwarebytes
malwarebytes
Insights into your unpatched vulnerabilities
2023-12-11 10:17:48
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.9%
Related for CVE-2023-34116