Your review has been sent successfully

Zoom Alert

9573
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Warning Date

Severity Level

Warning Number

Target Sector

18 November, 2022

● High

2022-5365

All

Description:

Zoom has released security updates to address multiple vulnerabilities in the following products:

  • Zoom Rooms Installer for Windows
    • before version 5.12.6
  • Zoom Client for Meetings Installer for macOS (Standard and for IT Admin)
    • before version 5.12.6
  • Zoom Client for Meetings for Windows (32-bit)
    • prior to 5.12.6
  • Zoom VDI Windows Meeting Client for Windows (32-bit)
    • prior to 5.12.6
  • Zoom Rooms for Conference Room for Windows (32-bit)
    • prior to 5.12.6
Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Elevate privileges from normal user to administrator
  • Inject a malware in the form of a DLL library by performing a DLL injection
Best practice and Recommendations:

The CERT team encourages users to review Zoom security advisory and apply the necessary updates:

Last updated at 18 November, 2022

Rate the content

rate-icon
up icon