PT-2023-5208 · Zoom · Zoom Desktop Client For Linux
Published
2023-07-25
·
Updated
2024-09-27
·
CVE-2023-39208
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Zoom Desktop Client for Linux versions prior to 5.15.10
Description
The issue is related to improper input validation in the Zoom Desktop Client for Linux, which may allow an unauthenticated user to conduct a denial of service via network access. This can be exploited by a remote attacker, leading to a denial of service.
Recommendations
For versions prior to 5.15.10, update to version 5.15.10 or later to resolve the issue. As a temporary workaround, consider restricting network access to the Zoom Desktop Client for Linux until a patch is applied.
Fix
RCE
XSS
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Zoom Desktop Client For Linux