CVE-2024-45419

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Nov 19, 2024

CWE ID 252

Summary

CVE-2024-45419 is a newly disclosed vulnerability affecting some Zoom Apps. This issue stems from an lack of input validation, which can enable unauthenticated users to gain access to sensitive information through network means. By exploiting this vulnerability, an attacker could potentially disclose data, posing a risk to privacy and confidentiality. Zoom is encouraged to release a patch for this vulnerability to prevent potential misuse. Until then, users are advised to practice caution and avoid opening unverified links or attachments.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Video SDK

Affected Vendors

Zoom Video Communications, Inc

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/yJy4rT
https://www.cve.org/CVERecord?id=CVE-2024-45419
https://nvd.nist.gov/vuln/detail/CVE-2024-45419

Back to Vulnerability Database