CVE-2024-24694

Zoom Desktop Client for Windows - Improper Privilege Management

CVSS 5.9 MEDIUMEPSS 0.2%CWE-347

Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access.

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N

Productos afectados

Zoom Video Communications, Inc. · Zoom Desktop Client for Windows

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.zoom.com/en/trust/security-bulletin/zsb-24011/