{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T17:41:51.481","vulnerabilities":[{"cve":{"id":"CVE-2023-28599","sourceIdentifier":"security@zoom.us","published":"2023-06-13T17:15:14.537","lastModified":"2024-11-21T07:55:38.560","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Zoom clients prior to 5.13.10 contain an HTML injection vulnerability.  A malicious user could inject HTML into  their display name potentially leading a victim to a malicious website during meeting creation."}],"metrics":{"cvssMetricV31":[{"source":"security@zoom.us","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"security@zoom.us","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-74"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:zoom:*:*:*:*:*:android:*:*","versionEndExcluding":"5.13.10","matchCriteriaId":"D266549E-02B0-4658-9D29-FD3AEE49676F"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:zoom:*:*:*:*:*:iphone_os:*:*","versionEndExcluding":"5.13.10","matchCriteriaId":"7BE1C2CD-27E1-4F54-B0DF-87A509B91CEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:zoom:*:*:*:*:*:linux:*:*","versionEndExcluding":"5.13.10","matchCriteriaId":"DB1E61AA-28D0-4F15-857E-D647EF0EEA8E"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:zoom:*:*:*:*:*:macos:*:*","versionEndExcluding":"5.13.10","matchCriteriaId":"A4EF241A-A6BF-427F-AB42-013C8127944A"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:zoom:*:*:*:*:*:windows:*:*","versionEndExcluding":"5.13.10","matchCriteriaId":"4C67C911-6DC5-4443-8AA7-229C63E13D5C"}]}]}],"references":[{"url":"https://explore.zoom.us/en/trust/security/security-bulletin/","source":"security@zoom.us","tags":["Vendor Advisory"]},{"url":"https://explore.zoom.us/en/trust/security/security-bulletin/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}