Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-39211

Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.

Published

2023-08-08T22:15:10.473

Last Modified

2024-11-21T08:14:55.400

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-347
Type: Primary
CWE-269

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zoom	rooms	< 5.15.5	Yes
Application	zoom	zoom	< 5.15.5	Yes

References

https://explore.zoom.us/en/trust/security/security-bulletin/ Vendor Advisory ([email protected])
https://explore.zoom.us/en/trust/security/security-bulletin/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)