CVE-2021-34424

Name of the Vulnerable Software and Affected Versions Zoom Client for Meetings versions prior to 5.8.4 Zoom Client for Meetings for Blackberry versions prior to 5.8.1 Zoom Client for Meetings for intune versions prior to 5.8.4 Zoom Client for Meetings for Chrome OS versions prior to 5.0.1 Zoom Rooms for Conference Room versions prior to 5.8.3 Controllers for Zoom Rooms versions prior to 5.8.3 Zoom VDI Windows Meeting Client versions prior to 5.8.4 Zoom VDI Azure Virtual Desktop Plugins versions prior to 5.8.4.21112 Zoom VDI Citrix Plugins versions prior to 5.8.4.21112 Zoom VDI VMware Plugins versions prior to 5.8.4.21112 Zoom Meeting SDK for Android versions prior to 5.7.6.1922 Zoom Meeting SDK for iOS versions prior to 5.7.6.1082 Zoom Meeting SDK for macOS versions prior to 5.7.6.1340 Zoom Meeting SDK for Windows versions prior to 5.7.6.1081 Zoom Video SDK versions prior to 1.1.2 Zoom on-premise Meeting Connector versions prior to 4.8.12.20211115 Zoom on-premise Meeting Connector MMR versions prior to 4.8.12.20211115 Zoom on-premise Recording Connector versions prior to 5.1.0.65.20211116 Zoom on-premise Virtual Room Connector versions prior to 4.4.7266.20211117 Zoom on-premise Virtual Room Connector Load Balancer versions prior to 2.5.5692.20211117 Zoom Hybrid Zproxy versions prior to 1.0.1058.20211116 Zoom Hybrid MMR versions prior to 4.6.20211116.131 x86-64

Description The issue is related to the exposure of the state of process memory, potentially allowing an attacker to gain insight into arbitrary areas of the product's memory. This could be used to potentially expose protected information.

Recommendations Update Zoom Client for Meetings to version 5.8.4 or later. Update Zoom Client for Meetings for Blackberry to version 5.8.1 or later. Update Zoom Client for Meetings for intune to version 5.8.4 or later. Update Zoom Client for Meetings for Chrome OS to version 5.0.1 or later. Update Zoom Rooms for Conference Room to version 5.8.3 or later. Update Controllers for Zoom Rooms to version 5.8.3 or later. Update Zoom VDI Windows Meeting Client to version 5.8.4 or later. Update Zoom VDI Azure Virtual Desktop Plugins to version 5.8.4.21112 or later. Update Zoom VDI Citrix Plugins to version 5.8.4.21112 or later. Update Zoom VDI VMware Plugins to version 5.8.4.21112 or later. Update Zoom Meeting SDK for Android to version 5.7.6.1922 or later. Update Zoom Meeting SDK for iOS to version 5.7.6.1082 or later. Update Zoom Meeting SDK for macOS to version 5.7.6.1340 or later. Update Zoom Meeting SDK for Windows to version 5.7.6.1081 or later. Update Zoom Video SDK to version 1.1.2 or later. Update Zoom on-premise Meeting Connector to version 4.8.12.20211115 or later. Update Zoom on-premise Meeting Connector MMR to version 4.8.12.20211115 or later. Update Zoom on-premise Recording Connector to version 5.1.0.65.20211116 or later. Update Zoom on-premise Virtual Room Connector to version 4.4.7266.20211117 or later. Update Zoom on-premise Virtual Room Connector Load Balancer to version 2.5.5692.20211117 or later. Update Zoom Hybrid Zproxy to version 1.0.1058.20211116 or later. Update Zoom Hybrid MMR to version 4.6.20211116.131 x86-64 or later.