CVE Catalog

CVE-2023-34117

LowCVSS 3.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.20%

9th percentile — higher than 9% of all known CVEs

Summary

Relative path traversal in the Zoom Client SDK before version 5.15.0 may allow an unauthorized user to enable information disclosure via local access.

Risk Assessment

The organization may be exposed to unauthorized access to sensitive data, potentially leading to privacy breaches and information security issues.

Recommendation

It is recommended to update the Zoom Client SDK to version 5.15.0 or later to mitigate this vulnerability.

Original NVD description (English source)

Relative path traversal in the Zoom Client SDK before version 5.15.0 may allow an unauthorized user to enable information disclosure via local access.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS