CVSS 3.1 Score 6.5 of 10 (medium)


Published Nov 14, 2023
Updated: Nov 21, 2023
CWE ID 310


CVE-2023-39199 is a vulnerability that affects multiple products, including Zoom clients. It is categorized as a cryptographic issue with In-Meeting Chat, which may allow a privileged user to conduct information disclosure through network access. The vulnerability has a base severity of MEDIUM, with a base score of 6.5 according to NIST. The attack vector is through the network, and the confidentiality impact is rated as HIGH. The exploitability score is 2.8, indicating a moderate level of difficulty for an attacker. Remediation steps or mitigations for this vulnerability are not provided in the given information. However, organizations using affected products should be aware of the potential danger posed by this vulnerability and consult with security experts or the product vendor for appropriate remediation measures.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-39199 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options