HIGH🇬🇧 English

CVE-2023-28596

CVSS 7.8v3.1pub. 2023-03-27upd. 2024-11-21

Zoom Client for IT Admin macOS installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to privileges to root.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Zoom Meetings

    APP
    Zoom
    < 5.13.5
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
LPE
CWE
Referencje

Powiązane podatności

CVE-2021-34423CRITICAL9.8ten sam produkt

A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, an...

CVE-2021-33907CRITICAL9.8ten sam produkt

The Zoom Client for Meetings for Windows in all versions before 5.3.0 fails to properly validate the certifica...

CVE-2023-22883HIGH7.2ten sam produkt

Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnera...

CVE-2022-28768HIGH8.8ten sam produkt

The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a ...

CVE-2022-28763HIGH8.8ten sam produkt

The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptibl...