Zoom Apps - Buffer Overflow

  • ZSB-24014
  • CVE-2024-27243
  • Medium
  • 6.5
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access.

 

Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.

  • Zoom Workplace Desktop App for Windows before version 5.17.5
  • Zoom Workplace Desktop App for macOS before version 5.17.5
  • Zoom Workplace Desktop App for Linux before version 5.17.5
  • Zoom Workplace VDI App for Windows before version 5.17.5 (excluding 5.15.17 and 5.16.15)
  • Zoom Workplace App for iOS before version 5.17.5
  • Zoom Workplace App for Android before version 5.17.5
  • Zoom Meeting SDK for Windows before version 5.17.5
  • Zoom Meeting SDK for iOS before version 5.17.5
  • Zoom Meeting SDK for Android before version 5.17.5
  • Zoom Meeting SDK for macOS before version 5.17.5
  • Zoom Meeting SDK for Linux before version 5.17.5

Reported by Zoom Offensive Security.

Revision Date Description
1.1 09/04/2024

Duplicate of ZSB-23026, CVE-2023-34122 has been rejected.
1.0 05/14/2024

Initial publication.