WARNING: UNAUTHENTICATED PRIVILEGE ESCALATION VULNERABILITY IN ZOOM FOR WINDOWS. PATCH NOW!
CVE-2024-24691
CVSS 9.6 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)
Bronnen
Risico’s
CVE-2024-24691 is a privilege escalation vulnerability in Zoom caused by improper input validation.
Successful exploitation of this vulnerability affects the availability, confidentiality and integrity highly . The exploit allows the attacker to escalate his privileges on the Windows system.
There has been no observation of attackers actively exploiting this vulnerability. No PoC has been released either.
Beschrijving
Zoom is a communications platform that allows users to connect with video, audio, phone, and chat.
No specific technical details other than ‘improper input validation’ were given for CVE-2024-24691. The exploit requires user interaction. A likely vector could be a maliciously crafted Zoom link. But at the moment of writing this cannot be confirmed.
Aanbevolen acties
Patch
The Centre for Cybersecurity Belgium strongly recommends installing updates for vulnerable devices with the highest priority, after thorough testing.
Follow the guidelines provided by Zoom in their security advisory.
Monitor/Detect
The CCB recommends organizations upscale monitoring and detection capabilities to identify any related suspicious activity, ensuring a swift response in case of an intrusion.
In case of an intrusion, you can report an incident via: https://cert.be/en/report-incident
While patching appliances or software to the newest version may provide safety from future exploitation, it does not remediate historic compromise.