CVE-2023-39211

Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:zoom:*:*:*:*:*:windows:*:*

History

27 Sep 2024, 19:15

Type Values Removed Values Added
CWE CWE-347

15 Aug 2023, 14:46

Type Values Removed Values Added
References (MISC) https://explore.zoom.us/en/trust/security/security-bulletin/ - (MISC) https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory
CPE cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:zoom:*:*:*:*:*:windows:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-269

08 Aug 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-08 22:15

Updated : 2024-09-27 19:15


NVD link : CVE-2023-39211

Mitre link : CVE-2023-39211

CVE.ORG link : CVE-2023-39211


JSON object : View

Products Affected

zoom

  • rooms
  • zoom
CWE
CWE-269

Improper Privilege Management

CWE-347

Improper Verification of Cryptographic Signature