Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In the Zoom Client through 4.4.4 and RingCentral 7.0.136380.0312 on macOS, remote attackers can force a user to join a video call with the video camera active. This occurs because any web site can interact with the Zoom web server on localhost port 19421 or 19424. NOTE: a machine remains vulnerable if the Zoom Client was installed in the past and then uninstalled. Blocking exploitation requires additional steps, such as the ZDisableVideo preference and/or killing the web server, deleting the ~/.zoomus directory, and creating a ~/.zoomus plain file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zoom Client和RingCentral 访问控制错误漏洞
Vulnerability Description
Zoom Client是美国Zoom公司的一款支持多种平台的视频会议客户端应用程序。 Zoom Client 4.4.4和RingCentral 7.0.136380.0312版本(macos平台)中存在安全漏洞。远程攻击者可利用该漏洞强制用户加入视频通话并激活摄像头。
CVSS Information
N/A
Vulnerability Type
N/A