PT-2023-6505 · Zoom · Zoom Vdi Client For Windows

Published

2023-08-08

Updated

2023-08-15

CVE-2023-39210

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Zoom Client SDK for Windows versions prior to 5.15.0

Description The issue concerns the cleartext storage of sensitive information, which may allow an authenticated user to enable an information disclosure via local access. This could potentially permit an attacker to access protected information.

Recommendations For Zoom Client SDK for Windows versions prior to 5.15.0, update to version 5.15.0 or later to resolve the issue.

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

BDU:2023-07252

CVE-2023-39210

Affected Products

Zoom Vdi Client For Windows

PT-2023-6505 · Zoom · Zoom Vdi Client For Windows

CVE-2023-39210

Weakness Enumeration

Related Identifiers

Affected Products

References · 6