cbcvebase.
CVE-2023-39211
published 2023-08-08

CVE-2023-39211: Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an…

PriorityP338high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.20%
10.0th percentile
Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access.

Affected

3 ranges
VendorProductVersion rangeFixed in
zoomrooms< 5.15.55.15.5
zoomzoom< 5.15.55.15.5
zoom_video_communications_inczoom_desktop_client_for_windows_and_zoom_rooms_for_windows
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.