Untrusted Search Path Vulnerability in Zoom Desktop Client Installer

Untrusted Search Path Vulnerability in Zoom Desktop Client Installer

CVE-2023-36540 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Untrusted search path in the installer for Zoom Desktop Client for Windows before 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.

Learn more about our Cis Benchmark Audit For Desktop Software.