CVE-2023-39203
First published: Tue Nov 14 2023(Updated: )
Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI Client may allow an unauthenticated user to conduct a disclosure of information via network access.
Credit: security@zoom.us
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zoom Virtual Desktop Infrastructure | <5.14.13 | |
| Zoom Virtual Desktop Infrastructure | >=5.15.0<5.15.11 | |
| Zoom Zoom | <5.16.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Zoom vulnerability?
The vulnerability ID is CVE-2023-39203.
What is the title of this vulnerability?
The title of this vulnerability is 'Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI…'
What is the severity of CVE-2023-39203?
The severity of CVE-2023-39203 is high with a severity value of 7.5.
What software is affected by this vulnerability?
The Zoom Desktop Client for Windows and Zoom VDI Client are affected by this vulnerability.
How can an unauthenticated user exploit this vulnerability?
An unauthenticated user can exploit this vulnerability to conduct a disclosure of information via network access.
Is there a security bulletin available for this vulnerability?
Yes, there is a security bulletin available for this vulnerability. You can find it at the following link: https://explore.zoom.us/en/trust/security/security-bulletin/
- collector/mitre-cve
- collector/nvd-api
- vendor/zoom
- canonical/zoom virtual desktop infrastructure
- version/zoom virtual desktop infrastructure/5.15.0
- canonical/zoom zoom