Improper Access Control

Bulletin: ZSB-23024
CVEID: CVE-2023-36538
CVSS Severity: High
CVSS Score: 8.4
CVSS Vector String: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H

Description:

Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.

Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.

Affected Products:

Zoom Rooms for Windows before version 5.15.0

Source:

Reported by sim0nsecurity.

Revision	Date	Description
1.0	07/11/2023	Initial Publication

Improper Access Control

Subscribe for updates