CVE-2022-22781

Name of the Vulnerable Software and Affected Versions Zoom Client for Meetings for MacOS versions prior to 5.9.6

Description The issue arises from the failure to properly check the package version during the update process. This could allow a malicious actor to update a user's currently installed version to a less secure version.

Recommendations For versions prior to 5.9.6, update to version 5.9.6 or later to resolve the issue. As a temporary workaround, consider disabling automatic updates until a patch is applied. Restrict access to the update mechanism to minimize the risk of exploitation.