Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS, Zoom Rooms Client for macOS - Improper Privilege Management

Bulletin: ZSB-24034
CVEID: CVE-2024-42441
CVSS Severity: Medium
CVSS Score: 6.2
CVSS Vector String: CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Description:

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS and Zoom Rooms Client for macOS before 6.1.5 may allow a privileged user to conduct an escalation of privilege via local access.

Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.

Affected Products:

Zoom Workplace Desktop App for macOS before version 6.1.5
Zoom Meeting SDK for macOS before version 6.1.5
Zoom Rooms Client for macOS before version 6.1.5

Source:

Reported by sim0nsecurity.

Revision	Date	Description
1.0	08/13/2024	Initial publication.

Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS, Zoom Rooms Client for macOS - Improper Privilege Management

Subscribe for updates