CVE-2024-45419

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Nov 19, 2024
CWE ID 252

Summary

CVE-2024-45419 is a newly identified vulnerability affecting some Zoom Apps. This issue stems from a lack of input validation, enabling unauthenticated users to potentially disclose information via network access. The flaw could potentially allow attackers to gain unauthorized access to sensitive data, posing a significant risk to organizations and individuals using the affected applications. Zoom has been urged to release a patch to address this vulnerability promptly and mitigate potential threats. Until then, users are advised to exercise caution and implement additional security measures to protect their data.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Video SDK

Affected Vendors

  • Zoom Video Communications, Inc