CVE-2024-45418

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 25, 2025

Updated: Mar 4, 2025

CWE ID 59

CWE ID 61

Summary

CVE-2024-45418 is a vulnerability affecting some Zoom apps for macOS prior to version 6.1.5. An authenticated user can exploit this symlink following issue to escalate their privileges via network access, potentially gaining elevated system permissions. This could lead to unauthorized access or data modification, making it a significant security concern. Users are advised to update their Zoom apps to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Zoom Rooms

Affected Vendors

Zoom Video Communications

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/yJzp3E
https://www.cve.org/CVERecord?id=CVE-2024-45418
https://nvd.nist.gov/vuln/detail/CVE-2024-45418

Back to Vulnerability Database