PT-2023-3410 · Zoom · Zoom For Macos+1

Publicado

2023-06-13

·

Atualizado

2023-06-21

·

CVE-2023-34114

CVSS v3.1

7.4

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Zoom for Windows versions prior to 5.14.10 Zoom for MacOS versions prior to 5.14.10
Description The issue is related to the exposure of a resource to the wrong sphere, potentially allowing an authenticated user to enable information disclosure via network access. This may permit a remote attacker to gain unauthorized access to protected information due to the disclosure of information in an erroneous data area.
Recommendations For Zoom for Windows versions prior to 5.14.10, update to version 5.14.10 or later. For Zoom for MacOS versions prior to 5.14.10, update to version 5.14.10 or later.

Correção

Exposure of Resource to Wrong Sphere

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-668

Identificadores relacionados

BDU:2023-03587
CVE-2023-34114

Produtos afetados

Zoom For Macos
Zoom For Windows