CVSS: 7.9EPSS: 0%CPEs: 1EXPL: 0CVE-2023-39212
https://notcve.org/view.php?id=CVE-2023-39212
08 Aug 2023 — Untrusted search path in Zoom Rooms for Windows before version 5.15.5 may allow an authenticated user to enable a denial of service via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-144: Improper Neutralization of Line Delimiters CWE-426: Untrusted Search Path •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-39211
https://notcve.org/view.php?id=CVE-2023-39211
08 Aug 2023 — Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-269: Improper Privilege Management CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 6.1EPSS: 0%CPEs: 10EXPL: 0CVE-2023-39218
https://notcve.org/view.php?id=CVE-2023-39218
08 Aug 2023 — Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-602: Client-Side Enforcement of Server-Side Security •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2023-36535
https://notcve.org/view.php?id=CVE-2023-36535
08 Aug 2023 — Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network access. La aplicación del lado del cliente de la seguridad del lado del servidor en los clientes en Zoom anteriores a la versión 5.14.10 puede permitir que un usuario autenticado permita la divulgación de información a través del acceso a la red. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-449: The UI Performs the Wrong Action CWE-602: Client-Side Enforcement of Server-Side Security •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-36532
https://notcve.org/view.php?id=CVE-2023-36532
08 Aug 2023 — Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a denial of service via network access. El desbordamiento del búfer en los clientes Zoom anteriores a la versión 5.14.5 puede permitir a un usuario no autenticado activar una denegación de servicio a través del acceso a la red. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36538
https://notcve.org/view.php?id=CVE-2023-36538
11 Jul 2023 — Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-284: Improper Access Control CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36537
https://notcve.org/view.php?id=CVE-2023-36537
11 Jul 2023 — Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-269: Improper Privilege Management CWE-354: Improper Validation of Integrity Check Value •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36536
https://notcve.org/view.php?id=CVE-2023-36536
11 Jul 2023 — Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-426: Untrusted Search Path •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34119
https://notcve.org/view.php?id=CVE-2023-34119
11 Jul 2023 — Insecure temporary file in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. Insecure temporary file in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-377: Insecure Temporary File CWE-426: Untrusted Search Path CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-34118
https://notcve.org/view.php?id=CVE-2023-34118
11 Jul 2023 — Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-250: Execution with Unnecessary Privileges CWE-269: Improper Privilege Management •