CVE-2023-39215

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 12, 2023
Updated: Sep 15, 2023
CWE ID 287

Summary

CVE-2023-39215 is a vulnerability affecting Zoom clients where improper authentication processes allow authenticated users to execute a denial-of-service attack through network access. This issue grants attackers the ability to overload Zoom servers, causing service disruptions for legitimate users. Although the attacker must first be authenticated to exploit this vulnerability, the denial-of-service consequence can lead to significant downtime and potential productivity losses. Zoom urges users to update their clients to the latest version, as patches have been released to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share