Lucene search
ZoomCVELIST:CVE-2023-36534HistoryAug 08, 2023 - 5:35 p.m.
CVE-2023-36534
2023-08-0817:35:29
CWE-22
Zoom
www.cve.org
7
zoom
windows
path traversal
privilege escalation
network access
CVSS3
9.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H
AI Score
10
Confidence
High
EPSS
0.002
Percentile
53.4%
Path traversal in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "Zoom Desktop Client for Windows",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "before 5.14.7"
}
]
}
]Related
nessus
nessus
Zoom Client for Meetings < 5.14.7 Vulnerability (ZSB-23030)
2023-11-03 00:00:00
prion
prion
Path traversal
2023-08-08 18:15:00
nvd
nvd
CVE-2023-36534
2023-08-08 18:15:14
cve
cve
CVE-2023-36534
2023-08-08 18:15:14
openvas
openvas
CVSS3
9.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H
AI Score
10
Confidence
High
EPSS
0.002
Percentile
53.4%
Related for CVELIST:CVE-2023-36534