CVE-2024-24693

Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.
Configurations

Configuration 1 (hide)

cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*

History

21 Nov 2024, 08:59

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 5.5
v2 : unknown
v3 : 7.2
References () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - Vendor Advisory () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - Vendor Advisory

20 Sep 2024, 15:15

Type Values Removed Values Added
CWE CWE-284 CWE-379
Summary (en) Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. (en) Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.

22 Mar 2024, 00:41

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.2
v2 : unknown
v3 : 5.5
CWE NVD-CWE-Other
First Time Zoom
Zoom rooms
CPE cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*
References () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - () https://www.zoom.com/en/trust/security-bulletin/zsb-24009/ - Vendor Advisory

14 Mar 2024, 12:52

Type Values Removed Values Added
Summary
  • (es) Un control de acceso inadecuado en el instalador de Zoom Rooms Client para Windows anterior a la versión 5.17.5 puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local.

13 Mar 2024, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-13 20:15

Updated : 2024-11-21 08:59


NVD link : CVE-2024-24693

Mitre link : CVE-2024-24693

CVE.ORG link : CVE-2024-24693


JSON object : View

Products Affected

zoom

  • rooms
CWE
CWE-379

Creation of Temporary File in Directory with Insecure Permissions

NVD-CWE-Other