 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.151453 |
| Category: | General |
| Title: | Zoom Client < 5.16.5 Multiple Vulnerabilities (ZSB-23062, ZSB-24006, ZSB-24007) - Linux |
| Summary: | The Zoom Client is prone to multiple denial of service; (DoS) vulnerabilities. |
| Description: | Summary: The Zoom Client is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - CVE-2023-49646 / ZSB-23062: Improper authentication may allow an authenticated user to conduct a denial of service via network access - CVE-2024-24690 / ZSB-24007: Improper input validation may allow an authenticated user to conduct a denial of service via network access - CVE-2024-24699 / ZSB-24006: Business logic error with in-meeting chat may allow an authenticated user to conduct information disclosure via network access Affected Software/OS: Zoom Client prior to version 5.16.5. Solution: Update to version 5.16.5 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2023-49646 https://www.zoom.com/en/trust/security-bulletin/ZSB-23062/ Common Vulnerability Exposure (CVE) ID: CVE-2024-24690 https://www.zoom.com/en/trust/security-bulletin/ZSB-24007/ Common Vulnerability Exposure (CVE) ID: CVE-2024-24699 https://www.zoom.com/en/trust/security-bulletin/ZSB-24006/ |
| Copyright | Copyright (C) 2023 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |