Описание
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. Users may potentially utilize higher level system privileges maintained by the Zoom client to spawn processes with escalated privileges.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одновременно
EPSS
8.7 High
CVSS3
7.8 High
CVSS3
Дефекты
Связанные уязвимости
Improper privilege management in Zoom for Windows, Zoom Rooms for Windows, and Zoom VDI for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. Users may potentially utilize higher level system privileges maintained by the Zoom client to spawn processes with escalated privileges.
Уязвимость программного обеспечения для проведения видеоконференций Zoom, связанная с небезопасным управлением привилегиями, позволяющая нарушителю повысить свои привилегии
EPSS
8.7 High
CVSS3
7.8 High
CVSS3