Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Local Privilege Escalation in Auto Updater for Zoom Client for Meetings for macOS
Vulnerability Description
The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.5 contains a vulnerability in the auto update process. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
密码学签名的验证不恰当
Vulnerability Title
Zoom Client 安全漏洞
Vulnerability Description
Zoom Client是美国Zoom公司的一款支持多种平台的视频会议客户端应用程序。 Zoom Client for MacOS(标准版和IT管理版) 5.7.3至5.11.5之前的版本存在安全漏洞,该漏洞源于本地用户可以利用自动更新过程中的漏洞将其权限升级为root。
CVSS Information
N/A
Vulnerability Type
N/A