Zoom has recently announced a security vulnerability affecting some of its Windows applications.
The issue involves an untrusted search path in certain Zoom Windows versions. This could potentially allow a hacker to bypass authentication and escalate their privileges on a affected system through network access. In practical terms, this could lead to unauthorized actions or access if exploited.
The vulnerability impacts the following Zoom for Windows products, if running versions earlier than 6.3.10:
- Zoom Workplace for Windows
- Zoom Workplace VDI for Windows (excluding 6.1.16 and 6.2.12)
- Zoom Rooms for Windows
- Zoom Rooms Controller for Windows
- Zoom Meeting SDK for Windows
Zoom has released updates addressing this security issue. Users should ensure they are running the latest version of Zoom. The updates are available for download from the official Zoom website zoom.com.
For organizations using Zoom, verifying that all devices are running the latest version is recommended to maintain security integrity.
Leave a Reply