Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.
History

Wed, 04 Sep 2024 22:00:00 +0000

Type Values Removed Values Added
First Time appeared Zoom workplace
Zoom workplace Virtual Desktop Infrastructure
Weaknesses CWE-787
CPEs cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipados:*:*
cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:android:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*
Vendors & Products Zoom workplace
Zoom workplace Virtual Desktop Infrastructure

Fri, 16 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop
CPEs cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:rooms:-:*:*:*:*:ipad_os:*:*
cpe:2.3:a:zoom:rooms:-:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_app:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*
Vendors & Products Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 14 Aug 2024 16:45:00 +0000

Type Values Removed Values Added
Description Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.
Title Zoom Workplace Apps and Rooms Clients - Buffer Overflow
Weaknesses CWE-122
References
Metrics cvssV3_1

{'score': 8.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Zoom

Published: 2024-08-14T16:34:53.595Z

Updated: 2024-08-16T13:28:41.388Z

Reserved: 2024-06-28T19:43:03.520Z

Link: CVE-2024-39825

cve-icon Vulnrichment

Updated: 2024-08-16T13:28:32.841Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-14T17:15:15.890

Modified: 2024-09-04T21:34:15.720

Link: CVE-2024-39825

cve-icon Redhat

No data.