Description
Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.
Published: 2024-08-14
Score: 8.5 High
EPSS: 1.3% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-38254 Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.
History

Wed, 04 Sep 2024 22:00:00 +0000

Type Values Removed Values Added
First Time appeared Zoom workplace
Zoom workplace Virtual Desktop Infrastructure
Weaknesses CWE-787
CPEs cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipados:*:*
cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:android:*:*
cpe:2.3:a:zoom:workplace:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*
Vendors & Products Zoom workplace
Zoom workplace Virtual Desktop Infrastructure

Fri, 16 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop
CPEs cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
cpe:2.3:a:zoom:rooms:-:*:*:*:*:ipad_os:*:*
cpe:2.3:a:zoom:rooms:-:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_app:*:*:*:*:*:*:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*
Vendors & Products Zoom
Zoom rooms
Zoom vdi Windows Meeting Client
Zoom workplace App
Zoom workplace Desktop
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 14 Aug 2024 16:45:00 +0000

Type Values Removed Values Added
Description Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access.
Title Zoom Workplace Apps and Rooms Clients - Buffer Overflow
Weaknesses CWE-122
References
Metrics cvssV3_1

{'score': 8.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Zoom Rooms Vdi Windows Meeting Client Workplace Workplace App Workplace Desktop Workplace Virtual Desktop Infrastructure
cve-icon MITRE

Status: PUBLISHED

Assigner: Zoom

Published:

Updated: 2024-08-16T13:28:41.388Z

Reserved: 2024-06-28T19:43:03.520Z

Link: CVE-2024-39825

cve-icon Vulnrichment

Updated: 2024-08-16T13:28:32.841Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-14T17:15:15.890

Modified: 2024-09-04T21:34:15.720

Link: CVE-2024-39825

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses