Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-49646

Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access.

Published

2023-12-13T23:15:08.357

Last Modified

2024-11-21T08:33:39.503

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.4 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-347
  • Type: Primary
    CWE-287
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application zoom meeting_software_development_kit < 5.16.5 Yes
Application zoom video_software_development_kit < 5.16.5 Yes
Application zoom virtual_desktop_infrastructure < 5.14.14 Yes
Application zoom virtual_desktop_infrastructure < 5.15.12 Yes
Application zoom zoom < 5.16.5 Yes
Application zoom zoom < 5.16.5 Yes
Application zoom zoom < 5.16.5 Yes
Application zoom zoom < 5.16.5 Yes
Application zoom zoom < 5.16.5 Yes
References