Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.
History

Wed, 11 Sep 2024 13:45:00 +0000

Type Values Removed Values Added
First Time appeared Zoom workplace
Zoom workplace Virtual Desktop Infrastructure
CPEs cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipados:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:android:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*
Vendors & Products Zoom workplace
Zoom workplace Virtual Desktop Infrastructure

Fri, 16 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop
CPEs cpe:2.3:a:zoom_communications_inc:workplace_apps_and_sdks:*:*:*:*:*:*:*:* cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:rooms:-:*:*:*:*:ipad_os:*:*
cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_app:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*
Vendors & Products Zoom Communications Inc
Zoom Communications Inc workplace Apps And Sdks
Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop

Wed, 14 Aug 2024 18:30:00 +0000

Type Values Removed Values Added
First Time appeared Zoom Communications Inc
Zoom Communications Inc workplace Apps And Sdks
CPEs cpe:2.3:a:zoom_communications_inc:workplace_apps_and_sdks:*:*:*:*:*:*:*:*
Vendors & Products Zoom Communications Inc
Zoom Communications Inc workplace Apps And Sdks
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 14 Aug 2024 16:45:00 +0000

Type Values Removed Values Added
Description Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.
Title Zoom Workplace Apps and SDKs - Protection Mechanism Failure
Weaknesses CWE-522
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Zoom

Published: 2024-08-14T16:36:37.347Z

Updated: 2024-08-16T13:26:38.801Z

Reserved: 2024-06-28T19:43:03.519Z

Link: CVE-2024-39818

cve-icon Vulnrichment

Updated: 2024-08-14T17:49:03.434Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-14T17:15:14.957

Modified: 2024-09-11T13:27:30.923

Link: CVE-2024-39818

cve-icon Redhat

No data.