← Back

CVE-2023-36533

nvd nist
Published: Aug 8, 2023Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Uncontrolled resource consumption in Zoom SDKs before 5.14.7 may allow an unauthenticated user to enable a denial of service via network access.

Affected (10)

Zoom
2 products
Meeting Software Development Kit
Video Software Development Kit
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Zoom
Meeting Software Development Kit
Before 5.14.7
Meeting Software Development Kit
Before 5.14.7
Meeting Software Development Kit
Before 5.14.7
Meeting Software Development Kit
Before 5.14.7
Meeting Software Development Kit
Before 5.14.7
Zoom
Video Software Development Kit
Before 5.14.7
Video Software Development Kit
Before 5.14.7
Video Software Development Kit
Before 5.14.7
Video Software Development Kit
Before 5.14.7
Video Software Development Kit
Before 5.14.7

Related CWEs

CWE-772
Missing Release of Resource after Effective Lifetime
The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

References (2)

Source: security@zoom.us
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.