CVE-2023-34114

Summary

Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access.

Affected Software

VendorProductVersion RangeStatus
Zoom Video Communications, Inc.Zoom for Windows Clientbefore 5.14.10affected
Zoom Video Communications, Inc.Zoom for MacOS Clientbefore 5.14.10affected

Weaknesses

  • CWE-668: CWE-668 Exposure of Resource to Wrong Sphere

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References