CVE-2024-27238

Name of the Vulnerable Software and Affected Versions: Zoom versions prior to 6.0.0

Description: The issue is related to a race condition error in the installer for some Zoom Apps and SDKs for Windows, which may allow an authenticated user to conduct a privilege escalation via local access. This is also described as a "ситуация гонки" or situation where synchronization errors occur when using a shared resource.

Recommendations: For versions prior to 6.0.0, update to version 6.0.0 or later to resolve the issue. As a temporary workaround, consider restricting local access to the installer for Zoom Apps and SDKs to minimize the risk of exploitation.