CVE-2024-24693

Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*

History

20 Sep 2024, 15:15

Type Values Removed Values Added
Summary (en) Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. (en) Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.
CWE CWE-284 CWE-379

22 Mar 2024, 00:41

Type Values Removed Values Added
CWE NVD-CWE-Other
First Time Zoom
Zoom rooms
References () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - Vendor Advisory
CPE cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
CVSS v2 : unknown
v3 : 7.2
v2 : unknown
v3 : 5.5

14 Mar 2024, 12:52

Type Values Removed Values Added
Summary
  • (es) Un control de acceso inadecuado en el instalador de Zoom Rooms Client para Windows anterior a la versión 5.17.5 puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local.

13 Mar 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-13 20:15

Updated : 2024-09-20 15:15


NVD link : CVE-2024-24693

Mitre link : CVE-2024-24693

CVE.ORG link : CVE-2024-24693


JSON object : View

Products Affected

zoom

  • rooms
CWE
NVD-CWE-Other CWE-379

Creation of Temporary File in Directory with Insecure Permissions