CVE-2024-27244

Zoom Workplace VDI App for Windows - Insufficient Verification of Data Authenticity

CVSS 6.7 MEDIUMEPSS 0.1%CWE-347

Insufficient verification of data authenticity in the installer for Zoom Workplace VDI App for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Productos afectados

Zoom Video Communications, Inc. · Zoom Workplace VDI App for Windows

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.zoom.com/en/trust/security-bulletin/zsb-24015/