CVE-2021-33907

Name of the Vulnerable Software and Affected Versions: Zoom Client for Meetings for Windows versions prior to 5.3.0

Description: The issue arises from the improper validation of certificate information used to sign .msi files during client updates, potentially leading to remote code execution in an elevated privileged context.

Recommendations: For versions prior to 5.3.0, update to version 5.3.0 or later to resolve the issue. As a temporary workaround, consider restricting the update process to minimize the risk of exploitation.