CVSS 3.1 Score 8.8 of 10 (high)


Published Dec 13, 2023
Updated: Dec 18, 2023
CWE ID 426


CVE-2023-43586 is a vulnerability that affects the Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows. It allows an authenticated user to exploit a path traversal vulnerability through network access, leading to an escalation of privilege. The vulnerability has a high base severity rating of 8.8 and poses a significant danger to organizations as it can potentially be exploited to gain unauthorized access to restricted directories and compromise the confidentiality and integrity of sensitive information. To remediate the vulnerability, users should update their Zoom software to the latest version available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43586 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options