CVE-2024-27244

Zoom Workplace VDI App for Windows - Insufficient Verification of Data Authenticity

Description

Insufficient verification of data authenticity in the installer for Zoom Workplace VDI App for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

INFO

Published Date :

2024-05-15T20:46:37.922Z

Last Modified :

2024-09-20T14:31:59.382Z

Source :

Zoom

AFFECTED PRODUCTS

The following products are affected by CVE-2024-27244 vulnerability.

Vendors	Products
Zoom	Vdi Windows Meeting Client Workplace Virtual Desktop Infrastructure

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-27244.

URL	Resource
https://www.zoom.com/en/trust/security-bulletin/zsb-24015/

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact