← back
CVE-2024-45418

Zoom Apps for macOS - Symbolic Link Following

CVSS 5.4 MEDIUMEPSS 0.4%CWE-61
Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an authenticated user to conduct an escalation of privilege via network access.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Affected products
Zoom Communications, Inc · Zoom Apps for macOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.zoom.com/en/trust/security-bulletin/zsb-24040/