Headline
CVE-2023-43583: ZSB 23056
Cryptographic issues Zoom Mobile App for Android, Zoom Mobile App for iOS, and Zoom SDKs for Android and iOS before version 5.16.0 may allow a privileged user to conduct a disclosure of information via network access.
Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs - Cryptographic Issues
- Bulletin: ZSB-23056
- CVEID: CVE-2023-43583
- CVSS Severity: Medium
- CVSS Score: 4.9
- CVSS Vector String: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Description:
Cryptographic issues Zoom Mobile App for Android, Zoom Mobile App for iOS, and Zoom SDKs for Android and iOS before version 5.16.0 may allow a privileged user to conduct a disclosure of information via network access.
Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.
Affected Products:
- Zoom Mobile App for Android before version 5.16.0
- Zoom Mobile App for iOS before version 5.16.0
- Zoom Video SDK for Android before version 5.16.0
- Zoom Video SDK for iOS before version 5.16.0
- Zoom Meeting SDK for Android before version 5.16.0
- Zoom Meeting SDK for iOS before version 5.16.0
Source:
Reported by Zoom Offensive Security Team.
Subscribe for updates
Please provide your individual email address to receive notification of future Zoom Security Bulletins. (Note: Email aliases will not receive these notifications.)