CVE-2024-39822

Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure

CVSS 6.5 MEDIUMEPSS 0.5%CWE-200

Vexday Risk Score

13Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 6.5EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

14 ago 2024Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Productos afectados

Zoom Communications Inc. · Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.zoom.com/en/trust/security-bulletin/zsb-24029