CVE-2023-28601

Name of the Vulnerable Software and Affected Versions Zoom versions prior to 5.14.0

Description The issue is related to an improper restriction of operations within the bounds of a memory buffer, which can be exploited by a remote attacker to execute arbitrary code. This can potentially cause integrity issues within the Zoom Client by allowing a malicious user to alter protected memory buffers.

Recommendations For versions prior to 5.14.0, update to version 5.14.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive features within the Zoom Client to minimize the risk of exploitation.