Lucene search
HistoryNov 14, 2023 - 11:15 p.m.
CVE-2023-39204
buffer overflow
zoom clients
unauthenticated user
denial of service
network access
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
20.5%
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Affected configurations
Node
zoommeetingsRange<5.15.10android
ORzoommeetingsRange<5.15.10iphone_os
ORzoommeetingsRange<5.15.10linux
ORzoommeetingsRange<5.15.10macos
ORzoommeetingsRange<5.15.10windows
ORzoomroomsRange<5.15.10android
ORzoomroomsRange<5.15.10ipad_os
ORzoomroomsRange<5.15.10macos
ORzoomroomsRange<5.15.10windows
ORzoomvideo_software_development_kitRange<5.15.10android
ORzoomvideo_software_development_kitRange<5.15.10iphone_os
ORzoomvideo_software_development_kitRange<5.15.10linux
ORzoomvideo_software_development_kitRange<5.15.10macos
ORzoomvideo_software_development_kitRange<5.15.10windows
ORzoomvirtual_desktop_infrastructureRange<5.14.13
ORzoomvirtual_desktop_infrastructureRange5.15.0–5.15.11
ORzoomzoomRange<5.15.10android
ORzoomzoomRange<5.15.10iphone_os
ORzoomzoomRange<5.15.10linux
ORzoomzoomRange<5.15.10macos
ORzoomzoomRange<5.15.10windows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zoom | meetings | * | cpe:2.3:a:zoom:meetings:*:*:*:*:*:android:*:* |
| zoom | meetings | * | cpe:2.3:a:zoom:meetings:*:*:*:*:*:iphone_os:*:* |
| zoom | meetings | * | cpe:2.3:a:zoom:meetings:*:*:*:*:*:linux:*:* |
| zoom | meetings | * | cpe:2.3:a:zoom:meetings:*:*:*:*:*:macos:*:* |
| zoom | meetings | * | cpe:2.3:a:zoom:meetings:*:*:*:*:*:windows:*:* |
| zoom | rooms | * | cpe:2.3:a:zoom:rooms:*:*:*:*:*:android:*:* |
| zoom | rooms | * | cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipad_os:*:* |
| zoom | rooms | * | cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:* |
| zoom | rooms | * | cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:* |
| zoom | video_software_development_kit | * | cpe:2.3:a:zoom:video_software_development_kit:*:*:*:*:*:android:*:* |
Related
nessus
nessus
Zoom VDI Meeting Client < 5.16.0 Vulnerability (ZSB-23048)
2023-11-14 00:00:00
Zoom Client for Meetings < 5.15.10 Vulnerability (ZSB-23048)
2023-11-14 00:00:00
vulnrichment
vulnrichment
CVE-2023-39204
2023-11-14 22:28:44
prion
prion
Buffer overflow
2023-11-14 23:15:00
openvas
openvas
Zoom Client < 5.15.10 DoS Vulnerability (ZSB-23048) - Windows
2023-11-15 00:00:00
Zoom Client < 5.15.10 DoS Vulnerability (ZSB-23048) - Mac OS X
2023-11-15 00:00:00
cvelist
cvelist
CVE-2023-39204
2023-11-14 22:28:44
cve
cve
CVE-2023-39204
2023-11-14 23:15:08
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
20.5%
Related for NVD:CVE-2023-39204