AI Score
Confidence
High
EPSS
Percentile
74.1%
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
airhost.exe in Zoom Client for Meetings 4.6.11 uses the SHA-256 hash of 0123425234234fsdfsdr3242 for initialization of an OpenSSL EVP AES-256 CBC context. NOTE: the vendor states that this initialization only occurs within unreachable code
[
{
"cpes": [
"cpe:2.3:a:zoom:meetings:4.6.11:*:*:*:*:macos:*:*"
],
"vendor": "zoom",
"product": "meetings",
"versions": [
{
"status": "affected",
"version": "4.6.11"
}
],
"defaultStatus": "unknown"
}
]