Lucene search

[email protected]NVD:CVE-2023-39211

HistoryAug 08, 2023 - 10:15 p.m.

CVE-2023-39211

2023-08-0822:15:10

CWE-269

[email protected]

web.nvd.nist.gov

zoom

windows

privilege management

information disclosure

local access

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.

Affected configurations

NVD

Node

zoomroomsRange<5.15.5windows

zoomzoomRange<5.15.5windows

References

explore.zoom.us/en/trust/security/security-bulletin/

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2023-39211

cvelist1 prion1 cve1 nessus1 openvas1 malwarebytes1