Lucene search
HistoryFeb 14, 2024 - 12:15 a.m.
CVE-2024-24696
input validation
zoom
windows
disclosure of information
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.4
Confidence
High
EPSS
0
Percentile
9.0%
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via network access.
Related
cve
cve
CVE-2024-24696
2024-02-14 00:15:47
nessus
nessus
Zoom VDI Meeting Client < 5.17.5 Vulnerability (ZSB-24003)
2024-02-20 00:00:00
Zoom Client for Meetings < 5.17.0 Vulnerability (ZSB-24003)
2024-02-20 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
prion
prion
Input validation
2024-02-14 00:15:00
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
AI Score
6.4
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-24696