Improper Input Validation

Bulletin: ZSB-23014
CVEID: CVE-2023-34122
CVSS Severity: High
CVSS Score: 7.3
CVSS Vector String: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L

Description:

Improper input validation in the installer for Zoom for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access.

Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.

Affected Products:

Zoom for Windows clients before version 5.14.0

Source:

Reported by sim0nsecurity

Revision	Date	Description
1.0	06/13/2023	Initial Publication

Improper Input Validation

Subscribe for updates