cbcvebase.
CVE-2023-39217
published 2023-08-08

CVE-2023-39217: Improper input validation in Zoom SDK’s before 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.

PriorityP342high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.34%
67.7th percentile
Improper input validation in Zoom SDK’s before 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.

Affected

3 ranges
VendorProductVersion rangeFixed in
zoommeeting_software_development_kit< 5.14.105.14.10
zoomvideo_software_development_kit< 5.14.105.14.10
zoom_video_communications_inczoom_sdk_s
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.