CVE-2024-27245

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 25, 2025

CWE ID 122

Summary

CVE-2024-27245 is a newly disclosed vulnerability affecting some Zoom Workplace Apps and Software Development Kits (SDKs). An authenticated user can exploit this buffer overflow weakness, leading to a denial-of-service condition via network access. The vulnerability allows malicious users to send specially crafted data, causing an overflow in the targeted system, resulting in unintended behavior and potential downtime for affected applications. It is crucial for organizations using these Zoom applications to apply the necessary patches promptly to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/umpd2h
https://www.cve.org/CVERecord?id=CVE-2024-27245
https://nvd.nist.gov/vuln/detail/CVE-2024-27245

Back to Vulnerability Database

CVE-2024-27245

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations