Lucene search
ZoomCVE-2024-24696HistoryFeb 14, 2024 - 12:15 a.m.
CVE-2024-24696
2024-02-1400:15:47
CWE-20
Zoom
web.nvd.nist.gov
21
cve-2024-24696
zoom
windows
input validation
disclosure
information security
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.3
Confidence
High
EPSS
0
Percentile
9.0%
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via network access.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "see references"
}
]
}
]Related
nessus
nessus
Zoom VDI Meeting Client < 5.17.5 Vulnerability (ZSB-24003)
2024-02-20 00:00:00
Zoom Client for Meetings < 5.17.0 Vulnerability (ZSB-24003)
2024-02-20 00:00:00
nvd
nvd
CVE-2024-24696
2024-02-14 00:15:47
cvelist
cvelist
vulnrichment
vulnrichment
prion
prion
Input validation
2024-02-14 00:15:00
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-24696