Zoom Apps Denial of Service Vulnerability
CVE-2024-45420

4.3MEDIUM

Key Information:

Vendor: Zoom
Status: Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers
Vendor: CVE Published:; 19 November 2024

Summary

An uncontrolled resource consumption vulnerability in Zoom Apps prior to version 6.2.0 allows authenticated users to exploit network access, potentially leading to denial of service. This can inadvertently impact the service performance and availability for other users, underscoring the importance of timely updates and security measures.

Affected Version(s)

Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers Windows see references

References

https://www.zoom.com/en/trust/security-bulletin/zsb-24042

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 19, 2024
Vulnerability Reserved
Aug 28, 2024

Collectors

NVD DatabaseMitre Database