admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-19 17:31:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-392xx/CVE-2023-39213.json

112 lines
3.0 KiB
JSON
Raw Normal View History

Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
{
"id": "CVE-2023-39213",
"sourceIdentifier": "security@zoom.us",
"published": "2023-08-08T22:15:10.657",
Auto-Update: 2023-08-15T16:00:39.521085+00:00
2023-08-15 16:00:43 +00:00
"lastModified": "2023-08-15T15:30:15.040",
"vulnStatus": "Analyzed",
Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
"descriptions": [
{
"lang": "en",
"value": "\nImproper neutralization of special elements in Zoom Desktop Client for Windows and Zoom VDI Client before 5.15.2 may allow an unauthenticated user to enable an escalation of privilege via network access.\n\n"
}
],
"metrics": {
"cvssMetricV31": [
Auto-Update: 2023-08-15T16:00:39.521085+00:00
2023-08-15 16:00:43 +00:00
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
{
"source": "security@zoom.us",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 2.8,
"impactScore": 6.0
}
]
},
"weaknesses": [
Auto-Update: 2023-08-15T16:00:39.521085+00:00
2023-08-15 16:00:43 +00:00
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-74"
}
]
},
Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
{
"source": "security@zoom.us",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-74"
}
]
}
],
Auto-Update: 2023-08-15T16:00:39.521085+00:00
2023-08-15 16:00:43 +00:00
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:zoom:virtual_desktop_infrastructure:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.2",
"matchCriteriaId": "08933DED-744E-4F1A-A3D8-A68027580BAE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:zoom:zoom:*:*:*:*:*:windows:*:*",
"versionEndExcluding": "5.15.2",
"matchCriteriaId": "AF2002E9-CEC6-4D38-83E4-7F8D2DE59806"
}
]
}
]
}
],
Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
"references": [
{
"url": "https://explore.zoom.us/en/trust/security/security-bulletin/",
Auto-Update: 2023-08-15T16:00:39.521085+00:00
2023-08-15 16:00:43 +00:00
"source": "security@zoom.us",
"tags": [
"Vendor Advisory"
]
Auto-Update: 2023-08-08T23:55:25.499786+00:00
2023-08-08 23:55:28 +00:00
}
]
}
Reference in New Issue Copy Permalink