Vulnerabilities > Zoom > Virtual Desktop Infrastructure > 5.15.0

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-39206 Classic Buffer Overflow vulnerability in Zoom products
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
network
low complexity
zoom CWE-120
7.5
7.5
2023-09-12 CVE-2023-39215 Improper Authentication vulnerability in Zoom Meeting Software Development KIT and Zoom
Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.
network
low complexity
zoom CWE-287
6.5
6.5
2023-08-08 CVE-2023-39213 Injection vulnerability in Zoom Virtual Desktop Infrastructure and Zoom
Improper neutralization of special elements in Zoom Desktop Client for Windows and Zoom VDI Client before 5.15.2 may allow an unauthenticated user to enable an escalation of privilege via network access.
network
low complexity
zoom CWE-74
critical
 9.8
9.8