Lucene search
ZoomCVE-2024-27247HistoryApr 09, 2024 - 6:15 p.m.
CVE-2024-27247
2024-04-0918:15:09
CWE-347
Zoom
web.nvd.nist.gov
33
zoom desktop client
macos
privilege management
installer
escalation of privilege
local access
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"MacOS"
],
"product": "Zoom Desktop Client for macOS",
"vendor": "Zoom Video Communications, Inc.",
"versions": [
{
"status": "affected",
"version": "before version 5.17.10"
}
]
}
]Related
nvd
nvd
CVE-2024-27247
2024-04-09 18:15:09
vulnrichment
vulnrichment
CVE-2024-27247 Zoom Desktop Client for macOS - Improper Privilege Management
2024-04-09 17:15:27
cvelist
cvelist
CVE-2024-27247 Zoom Desktop Client for macOS - Improper Privilege Management
2024-04-09 17:15:27
nessus
nessus
Zoom Client for Meetings < 5.17.10 Vulnerability (ZSB-24012)
2024-04-09 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-27247