PT-2024-29949 · Zoom · Zoom Meeting Sdk+2

Sim0Nsecurity

Published

2024-08-13

Updated

2025-10-02

CVE-2024-42441

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Zoom Workplace Desktop App for macOS versions prior to 6.1.5 Zoom Meeting SDK for macOS versions prior to 6.1.5 Zoom Rooms Client for macOS versions prior to 6.1.5

Description The issue is related to improper privilege management in the installer for the affected Zoom products on macOS. This may allow a privileged user to conduct an escalation of privilege via local access.

Recommendations For Zoom Workplace Desktop App for macOS versions prior to 6.1.5, update to version 6.1.5 or later. For Zoom Meeting SDK for macOS versions prior to 6.1.5, update to version 6.1.5 or later. For Zoom Rooms Client for macOS versions prior to 6.1.5, update to version 6.1.5 or later.

Fix

Improper Privilege Management

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-266

Related Identifiers

BDU:2025-02741

CVE-2024-42441

Affected Products

Zoom Meeting Sdk

Zoom Rooms Clients

Zoom Workplace Desktop App

PT-2024-29949 · Zoom · Zoom Meeting Sdk+2

CVE-2024-42441

Weakness Enumeration

Related Identifiers

Affected Products

References · 8