Zoom Clients - Improper Conditions Check

  • ZSB-23049
  • CVE-2023-39205
  • Medium
  • 4.3
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.

 

Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download

  • Zoom Desktop Client for Windows before version 5.16.0
  • Zoom Desktop Client for macOS before version 5.16.0
  • Zoom Mobile App for iOS before version 5.16.0
  • Zoom Mobile App for Android before version 5.16.0
  • Zoom Desktop Client for Linux before version 5.16.0
  • Zoom VDI Client before version 5.16.0 (excluding 5.14.13 and 5.15.11)
  • Zoom Video SDK for Windows before version 1.9.0
  • Zoom Video SDK for macOS before version 1.9.0
  • Zoom Video SDK for Android before version 1.9.0
  • Zoom Video SDK for iOS before version 1.9.0
  • Zoom Video SDK for Linux before version 1.9.0
  • Zoom Meeting SDK for Windows before version 5.16.0
  • Zoom Meeting SDK for iOS before version 5.16.0
  • Zoom Meeting SDK for Android before version 5.16.0
  • Zoom Meeting SDK for macOS before version 5.16.0
  • Zoom Meeting SDK for Linux before version 5.16.0

Reported by Zoom Offensive Security Team.

Revision Date Description
1.0 11/14/2023

Initial Publication