CVE-2021-34411

During the installation process forZoom Rooms for Conference Room for Windows before version 5.3.0 it is possible to launch Internet Explorer with elevated privileges. If the installer was launched with elevated privileges such as by SCCM this can result in a local privilege escalation.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*

History

06 Oct 2021, 18:53

Type Values Removed Values Added
CPE cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
CWE CWE-269
References (CONFIRM) https://explore.zoom.us/en/trust/security/security-bulletin/ - (CONFIRM) https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 4.6
v3 : 7.8

01 Oct 2021, 22:15

Type Values Removed Values Added
References
  • {'url': 'https://cwe.mitre.org/data/definitions/266.html', 'name': 'https://cwe.mitre.org/data/definitions/266.html', 'tags': [], 'refsource': 'MISC'}
  • (CONFIRM) https://explore.zoom.us/en/trust/security/security-bulletin/ -

27 Sep 2021, 14:34

Type Values Removed Values Added
New CVE

Information

Published : 2021-09-27 14:15

Updated : 2024-02-04 22:08


NVD link : CVE-2021-34411

Mitre link : CVE-2021-34411

CVE.ORG link : CVE-2021-34411


JSON object : View

Products Affected

zoom

  • rooms
CWE
CWE-269

Improper Privilege Management