CVE-2023-36535

Name of the Vulnerable Software and Affected Versions Zoom versions prior to 5.14.10

Description The issue is related to the client-side enforcement of server-side security in Zoom clients, which may allow an authenticated user to enable information disclosure via network access. This could potentially permit a remote attacker to gain unauthorized access to protected information.

Recommendations For versions prior to 5.14.10, update to version 5.14.10 or later to resolve the issue. As a temporary workaround, consider restricting network access to minimize the risk of exploitation.