CVE-2023-39206
CVE-2023-39206
In short
A buffer overflow vulnerability in certain Zoom client versions allows an attacker to crash the application without needing to log in. An attacker on the network can send specially crafted data to trigger this issue.
Technical detail
Buffer overflow in Zoom client input handling allows unauthenticated network-based denial of service. The vulnerability requires network access but no prior authentication; exploitation results in client crash or potential memory corruption.
Summary generated and translated by AI from the official description.
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
Zoom Video Communications, Inc. · Zoom ClientsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →