Lucene search
ZoomCVELIST:CVE-2024-24695HistoryFeb 13, 2024 - 11:50 p.m.
CVE-2024-24695 Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation
2024-02-1323:50:22
CWE-20
Zoom
www.cve.org
2
zoom
windows
input validation
vulnerability
disclosure
network access
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.6
Confidence
High
EPSS
0
Percentile
9.0%
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via network access.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "see references"
}
]
}
]Related
nvd
nvd
CVE-2024-24695
2024-02-14 00:15:47
prion
prion
Input validation
2024-02-14 00:15:00
nessus
nessus
Zoom VDI Meeting Client < 5.17.5 Vulnerability (ZSB-24002)
2024-02-20 00:00:00
Zoom Client for Meetings < 5.17.0 Vulnerability (ZSB-24002)
2024-02-20 00:00:00
cve
cve
CVE-2024-24695
2024-02-14 00:15:47
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2024-24695