CVE-2023-39211
https://notcve.org/view.php?id=CVE-2023-39211
Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-269: Improper Privilege Management •
CVE-2023-39218
https://notcve.org/view.php?id=CVE-2023-39218
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-602: Client-Side Enforcement of Server-Side Security •
CVE-2023-39216
https://notcve.org/view.php?id=CVE-2023-39216
Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-20: Improper Input Validation •
CVE-2023-36535
https://notcve.org/view.php?id=CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network access. La aplicación del lado del cliente de la seguridad del lado del servidor en los clientes en Zoom anteriores a la versión 5.14.10 puede permitir que un usuario autenticado permita la divulgación de información a través del acceso a la red. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-602: Client-Side Enforcement of Server-Side Security •
CVE-2023-36534
https://notcve.org/view.php?id=CVE-2023-36534
Path traversal in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access. El recorrido de ruta en Zoom Desktop Client para Windows anterior a 5.14.7 puede permitir que un usuario no autenticado habilite una escalada de privilegios a través del acceso a la red. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •