The vulnerability of clients for conducting real-time audio and video conferences via Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows lies in the improper validation of the host name during the server switching process. This allows attackers to execute a “man-in-the-middle” attack.
The vulnerability of clients for conducting real-time audio and video conferences using Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows stems from an improper check of the host name during the request to switch servers. Exploiting this vulnerability allows a remote attacker to...