Zoom For Windows Client
Approved changes feed: RSS · Atom
cpe:2.3:a:zoom_video_communications,_inc.:zoom_for_windows_client:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Zoom Video Communications, Inc. (40e3ad3c-5bb8-57cd-ab3a-b450c1340e8f) |
|---|---|
| Product | Zoom For Windows Client (843a3555-c1b0-50ef-ac5b-23c4c8b648e0) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-34120 |
vulnerable | 2026-06-03 14:52:15.761818 |
Details available
HIGH (8.7)
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. Users may potentially utilize higher level system privileges maintained by the Zoom client to spawn processes with escalated privileges.
Published: 2023-06-13T17:38:52.940Z
Updated: 2025-01-02T20:10:14.414Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-34114 |
vulnerable | 2026-06-03 14:52:15.745386 |
Details available
HIGH (7.4)
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access.
Published: 2023-06-13T18:37:22.969Z
Updated: 2025-01-02T19:57:07.764Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28602 |
vulnerable | 2026-06-03 14:51:13.106073 |
Details available
LOW (2.8)
Zoom for Windows clients prior to 5.13.5 contain an improper verification of cryptographic signature vulnerability. A malicious user may potentially downgrade Zoom Client components to previous versions.
Published: 2023-06-13T17:30:07.510Z
Updated: 2025-01-02T20:11:44.583Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-28601 |
vulnerable | 2026-06-03 14:51:13.105651 |
Details available
HIGH (8.3)
Zoom for Windows clients prior to 5.14.0 contain an improper restriction of operations within the bounds of a memory buffer vulnerability. A malicious user may alter protected Zoom Client memory buffer potentially causing integrity issues within the Zoom Client.
Published: 2023-06-13T17:05:58.289Z
Updated: 2025-01-02T20:01:16.684Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.