Relative Path Traversal

  • ZSB-23019
  • CVE-2023-34117
  • Low
  • 3.3
  • CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Relative path traversal in the Zoom Client SDK before version 5.15.0 may allow an unauthorized user to enable information disclosure via local access.

Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.

  • Zoom Client SDK before version 5.15.0

Reported by Dimitrios Valsamaras of Microsoft.

Revision Date Description
1.0 07/11/2023

Initial Publication