CVE-2023-34116 HIGH

CVE-2023-34116

Vendor Zoom Video Communications, Inc.

Product Zoom Desktop Client for Windows

Weakness CWE-78

Published July 11, 2023

Last update October 22, 2024

View on NVD All CVEs

CVSS base score

8.2/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction Required

Confidentiality None

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:H

What the vulnerability does

01Description

Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network access.

Key dates

02Disclosure timeline

July 11, 2023 CVE published

October 22, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-34116 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/78.html

Related vulnerabilities

Identifiers

CVE CVE-2023-34116

CWE CWE-78

CVSS 8.2 / HIGH

Affected versions