CVE-2023-36537

Summary

Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.

Affected Software

VendorProductVersion RangeStatus
Zoom Video Communications, Inc.Zoom Rooms for Windowsbefore 5.14.5affected

Weaknesses

  • CWE-354: CWE-354 Improper Validation of Integrity Check Value

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References