CVE-2023-36540

CVSS 7.3 HIGHEPSS 0.3%CWE-426

Untrusted search path in the installer for Zoom Desktop Client for Windows before 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L

Produtos afetados

Zoom Video Communications, Inc. · Zoom Desktop Client for Windows

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://explore.zoom.us/en/trust/security/security-bulletin/