Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHive ProHIVEPRO:C6DE52590D2035D4850626D264C1B868
HistoryNov 30, 2021 - 10:11 a.m.

Have you updated your Zoom meeting?

2021-11-3010:11:06
Hive Pro
www.hivepro.com
21

0.004 Low

EPSS

Percentile

74.1%

JSON

THREAT LEVEL: Amber.

For a detailed advisory, download the pdf file here.

Two Critical vulnerabilities have been found in Zoom products. These vulnerabilities were discovered by
Natalie Silvanovich, a researcher from Google Project Zero.
The first vulnerability, CVE-2021-34423 is a high severity and a buffer overflow vulnerability. This could
allow an attacker to crash the service or application or exploit the vulnerability by executing an arbitrary code.
The second vulnerability, CVE-2021-34424 is a medium severity and a memory corruption vulnerability.
This flaw could be used to get access to arbitrary parts of the product’s memory.
Both these vulnerabilities can be fixed by updating Zoom products to their latest versions.

Vulnerability Details

References

<https://explore.zoom.us/en/trust/security/security bulletin/>

<https://securityaffairs.co/wordpress/125122/security/video conferencing software zoom flaws.html>

Related

openvas 3
kaspersky 1
googleprojectzero 1
nessus 3
thn 1
nvd 2
cvelist 2
cve 2
prion 2
githubexploit 1
openvas
openvas
Zoom Client < 5.8.4 Multiple Vulnerabilities (ZSB-21019, ZSB-21020) - Mac OS X
2021-11-26 00:00:00
Zoom Client < 5.8.4 Multiple Vulnerabilities (ZSB-21019, ZSB-21020) - Linux
2021-11-26 00:00:00
Zoom Client < 5.8.4 Multiple Vulnerabilities (ZSB-21019, ZSB-21020) - Windows
2021-11-26 00:00:00
kaspersky
kaspersky
KLA12380 Multiple vulnerabilities in Zoom
2021-11-24 00:00:00
googleprojectzero
googleprojectzero
Zooming in on Zero-click Exploits
2022-01-18 00:00:00
nessus
nessus
Zoom Client < 5.8.4 Multiple Vulnerabilities
2022-02-18 00:00:00
Zoom Client for Meetings < 5.8.4 Vulnerability (ZSB-21020)
2022-12-15 00:00:00
Zoom Client for Meetings < 5.8.4 Vulnerability (ZSB-21019)
2022-12-15 00:00:00
thn
thn
Google Details Two Zero-Day Bugs Reported in Zoom Clients and MMR Servers
2022-01-20 13:18:00
nvd
nvd
CVE-2021-34423
2021-11-24 17:15:07
CVE-2021-34424
2021-11-24 17:15:07
cvelist
cvelist
CVE-2021-34424 Process memory exposure in Zoom Client and other products
2021-11-24 00:00:00
CVE-2021-34423 Buffer overflow in Zoom client and other products
2021-11-24 00:00:00
cve
cve
CVE-2021-34423
2021-11-24 17:15:07
CVE-2021-34424
2021-11-24 17:15:07
prion
prion
Design/Logic Flaw
2021-11-24 17:15:00
Buffer overflow
2021-11-24 17:15:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-08-10 15:01:02

0.004 Low

EPSS

Percentile

74.1%

JSON
Related for HIVEPRO:C6DE52590D2035D4850626D264C1B868
openvas3kaspersky1googleprojectzero1nessus3thn1nvd2cvelist2cve2prion2githubexploit1