Shodan
Vulnerabilities
Vulnerable Software
Zoom:  >> Virtual Desktop Infrastructure  >> 5.13.10  Security Vulnerabilities
CVE-2023-39205
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
CVSS Score
4.3
EPSS Score
0.004
Published
2023-11-14
CVE-2023-39215
Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.
CVSS Score
7.1
EPSS Score
0.004
Published
2023-09-12
CVE-2023-39213
Improper neutralization of special elements in Zoom Desktop Client for Windows and Zoom VDI Client before 5.15.2 may allow an unauthenticated user to enable an escalation of privilege via network access.
CVSS Score
9.6
EPSS Score
0.011
Published
2023-08-08
CVE-2023-39218
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-08-08
CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network access.
CVSS Score
7.1
EPSS Score
0.002
Published
2023-08-08
CVE-2023-36532
Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.
CVSS Score
5.9
EPSS Score
0.007
Published
2023-08-08
CVE-2023-28603
Zoom VDI client installer prior to 5.14.0 contains an improper access control vulnerability. A malicious user may potentially delete local files without proper permissions.
CVSS Score
7.7
EPSS Score
0.0
Published
2023-06-13
CVE-2023-34120
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. Users may potentially utilize higher level system privileges maintained by the Zoom client to spawn processes with escalated privileges.
CVSS Score
8.7
EPSS Score
0.0
Published
2023-06-13
CVE-2023-34121
Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access.
CVSS Score
4.1
EPSS Score
0.006
Published
2023-06-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved