airhost.exe in Zoom Client for Meetings 4.6.11 uses 3423423432325249 as the Initialization Vector (IV) for AES-256 CBC encryption. NOTE: the vendor states that this IV is used only within unreachable code
References
Link | Resource |
---|---|
https://dev.io/posts/zoomzoo/ | Exploit Third Party Advisory |
Configurations
History
07 Nov 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
Summary | airhost.exe in Zoom Client for Meetings 4.6.11 uses 3423423432325249 as the Initialization Vector (IV) for AES-256 CBC encryption. NOTE: the vendor states that this IV is used only within unreachable code |
Information
Published : 2020-04-17 16:15
Updated : 2024-08-04 12:15
NVD link : CVE-2020-11877
Mitre link : CVE-2020-11877
CVE.ORG link : CVE-2020-11877
JSON object : View
Products Affected
zoom
- meetings
CWE
CWE-330
Use of Insufficiently Random Values