Lucene search
ZoomVULNRICHMENT:CVE-2023-43588HistoryNov 14, 2023 - 11:11 p.m.
CVE-2023-43588
2023-11-1423:11:18
CWE-449
Zoom
github.com
2
zoom
control flow
information disclosure
network access
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.
Related
cvelist
cvelist
CVE-2023-43588
2023-11-14 23:11:18
prion
prion
Design/Logic Flaw
2023-11-15 00:15:00
nessus
nessus
Zoom Client for Meetings < 5.16.0 Vulnerability (ZSB-23052)
2023-11-14 00:00:00
Zoom VDI Meeting Client < 5.16.0 Vulnerability (ZSB-23052)
2023-11-14 00:00:00
cve
cve
CVE-2023-43588
2023-11-15 00:15:08
nvd
nvd
CVE-2023-43588
2023-11-15 00:15:08
CVSS3
3.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
AI Score
4.8
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-43588