CVE-2020-11469

CVSS 6.3 MEDIUMEPSS 0.4%

Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root access by replacing runwithroot.

CVSS:3.0/AC:H/AV:L/A:H/C:H/I:H/PR:H/S:U/UI:R

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://blog.zoom.us/wordpress/2020/04/01/a-message-to-our-users/https://objective-see.com/blog/blog_0x56.html