CVE-2020-9767

Name of the Vulnerable Software and Affected Versions Zoom versions prior to 5.0.4

Description A issue related to Dynamic-link Library (“DLL”) loading in the Zoom Sharing Service allows an attacker with local access and elevated privileges to elevate system privileges using a malicious DLL. This issue only affects Windows users.

Recommendations For versions prior to 5.0.4, update to version 5.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the Zoom Sharing Service to minimize the risk of exploitation.