CVE-2024-39822 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure
https://notcve.org/view.php?id=CVE-2024-39822
Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24029 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2024-39818 – Zoom Workplace Apps and SDKs - Protection Mechanism Failure
https://notcve.org/view.php?id=CVE-2024-39818
Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24022 • CWE-522: Insufficiently Protected Credentials •
CVE-2024-39825 – Zoom Workplace Apps and Rooms Clients - Buffer Overflow
https://notcve.org/view.php?id=CVE-2024-39825
Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24022 • CWE-122: Heap-based Buffer Overflow •
CVE-2024-39821 – Zoom Workplace App for Windows and Zoom Rooms App for Windows - Race Condition
https://notcve.org/view.php?id=CVE-2024-39821
Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows may allow an authenticated user to conduct a denial of service via local access. La condición de ejecución en el instalador de la aplicación Zoom Workplace para Windows y la aplicación Zoom Rooms para Windows puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local. • https://www.zoom.com/en/trust/security-bulletin/zsb-24028 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2024-39820 – Zoom Workplace Desktop App for macOS - Uncontrolled Search Path Element
https://notcve.org/view.php?id=CVE-2024-39820
Uncontrolled search path element in the installer for Zoom Workplace Desktop App for macOS before version 6.0.10 may allow an authenticated user to conduct a denial of service via local access. El elemento de ruta de búsqueda no controlado en el instalador de la aplicación de escritorio Zoom Workplace para macOS anterior a la versión 6.0.10 puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local. • https://www.zoom.com/en/trust/security-bulletin/zsb-24027 • CWE-427: Uncontrolled Search Path Element •