Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Meetings | Zoom | * | 5.16.0 (excluding) |
Rooms | Zoom | * | 5.16.0 (excluding) |
Virtual_desktop_infrastructure | Zoom | * | 5.14.13 (excluding) |
Virtual_desktop_infrastructure | Zoom | 5.15.0 (including) | 5.15.11 (excluding) |
Zoom | Zoom | * | 5.16.0 (excluding) |