Lucene search
ZoomCVE-2023-34114HistoryJun 13, 2023 - 7:15 p.m.
CVE-2023-34114
2023-06-1319:15:09
CWE-668
Zoom
web.nvd.nist.gov
53
cve-2023-34114
zoom
windows
macos
information disclosure
network access
vulnerability
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
24.2%
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access.
Affected configurations
Node
zoomzoomRange<5.14.10macos
ORzoomzoomRange<5.14.10windows
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Zoom for Windows Client",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "before 5.14.10"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Zoom for MacOS Client",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "before 5.14.10"
}
]
}
]Related
prion
prion
Information disclosure
2023-06-13 19:15:00
nessus
nessus
Zoom Client for Meetings < 5.14.10 Vulnerability (ZSB-23016)
2023-06-13 00:00:00
nvd
nvd
CVE-2023-34114
2023-06-13 19:15:09
openvas
openvas
cvelist
cvelist
CVE-2023-34114
2023-06-13 18:37:22
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
24.2%
Related for CVE-2023-34114