QID 378097

Date Published: 2023-03-20

QID 378097: Zoom Client for Meetings Information Disclosure Vulnerability (ZSB-23001)

Zoom provides video communications with a cloud platform for video and audio conferencing, chat, and webinars across mobile, desktop, and room systems.

Zoom for Windows clients before 5.13.3 contain an information disclosure vulnerability.

Affected Versions:
Zoom for Windows clients before 5.13.3

QID Detection Logic:
QID Detection Logic (Authenticated):
This authenticated QID detects vulnerable Zoom Client prior to version 5.13.3 (Windows)

Successful exploitation of this vulnerability may allows a remote attacker to gain access to potentially sensitive information.

  • CVSS V3 rated as High - 6.8 severity.
  • CVSS V2 rated as Medium - 4 severity.
  • Solution
    Customers are advised to upgrade to Zoom for Windows clients 5.13.3 or later to remediate these vulnerabilities.

    CVEs related to QID 378097

    Software Advisories
    Advisory ID Software Component Link
    ZSB-23001 URL Logo explore.zoom.us/en/trust/security/security-bulletin/