Zoom Apps Denial of Service Vulnerability
CVE-2024-45420

6.5MEDIUM

Key Information:

Vendor: Zoom
Status: Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers
Vendor: CVE Published:; 19 November 2024

What is CVE-2024-45420?

An uncontrolled resource consumption vulnerability in Zoom Apps prior to version 6.2.0 allows authenticated users to exploit network access, potentially leading to denial of service. This can inadvertently impact the service performance and availability for other users, underscoring the importance of timely updates and security measures.

Affected Version(s)

Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers Windows see references

References

https://www.zoom.com/en/trust/security-bulletin/zsb-24042

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 19, 2024
Vulnerability Reserved
Aug 28, 2024