CVE-2023-36536

Summary

Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.

Affected Software

VendorProductVersion RangeStatus
Zoom Video Communications, Inc.Zoom Rooms for Windowsbefore 5.15.0affected

Weaknesses

  • CWE-426: CWE-426 Untrusted Search Path

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References