CVE-2023-39209

Summary

Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via network access.

Affected Software

VendorProductVersion RangeStatus
Zoom Video Communications, Inc.Zoom Desktop Client for Windowsbefore 5.15.5affected

Weaknesses

  • CWE-449: CWE-449: The UI Performs the Wrong Action

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References