Buffer Copy without Checking Size of Input
- ZSB-23017
- CVE-2023-34115
- Medium
- 4
- CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Buffer copy without checking size of input in Zoom Meeting SDK before 5.13.0 may allow an authenticated user to potentially enable a denial of service via local access. This issue may result in the Zoom Meeting SDK to crash and need to be restarted.
Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.
- Zoom Meeting SDK before 5.13.0.
Reported by Eugene Lim
| Revision | Date | Description |
|---|---|---|
| 1.0 | 06/13/2023 | Initial Publication |