CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
18.8%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access.
[
{
"vendor": "Zoom Communications Inc.",
"product": "Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers",
"versions": [
{
"status": "affected",
"version": "see references"
}
],
"platforms": [
"Windows",
"MacOS",
"Linux",
"iOS",
"Android"
],
"defaultStatus": "unaffected"
}
]
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
18.8%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial