Zoom Desktop Client for Windows - Improper Input Validation

  • ZSB-23032
  • CVE-2023-39216
  • Critical
  • 9.6
  • CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Improper input validation in Zoom Desktop Client for Windows before version 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.

 

Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download

  • Zoom Desktop Client for Windows before version 5.14.7

Reported by Zoom Offensive Security Team.

Revision Date Description
1.0 08/08/2023

Initial Publication