Zoom Workplace Apps and SDKs - Buffer Overflow
- ZSB-24033
- CVE-2024-42439
- Medium
- 6.5
- CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS before 6.1.0 may allow a privileged user to conduct an escalation of privilege via local access.
Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.
- Zoom Workplace Desktop App for macOS before version 6.1.5
- Zoom Meeting SDK for macOS before version 6.1.5
Reported by an anonymous researcher.
| Revision | Date | Description |
|---|---|---|
| 1.0 | 08/13/2024 | Initial publication. |