Lucene search

[email protected]NVD:CVE-2024-24692

HistoryMar 13, 2024 - 8:15 p.m.

CVE-2024-24692

2024-03-1320:15:07

CWE-367

[email protected]

web.nvd.nist.gov

race condition

zoom rooms client

windows

denial of service

local access

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.1

Confidence

High

EPSS

Percentile

9.0%

JSON

Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.

Affected configurations

Nvd

Node

zoomroomsRange<5.17.5windows

VendorProductVersionCPE
zoomrooms*cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*

Vendor	Product	Version	CPE
zoom	rooms	*	cpe:2.3:a:zoom:rooms::::::windows::*

References

www.zoom.com/en/trust/security-bulletin/zsb-24009/

CVSS3

4.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.1

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-24692

prion1 cvelist1 vulnrichment1 cve1