Have you updated your Zoom meeting?

Threat Level – Amber | Vulnerability Report
Download PDF

For a detailed advisory, download the pdf file here.

Two Critical vulnerabilities have been found in Zoom products. These vulnerabilities were discovered byNatalie Silvanovich, a researcher from Google Project Zero.The first vulnerability, CVE-2021-34423 is a high severity and a buffer overflow vulnerability. This couldallow an attacker to crash the service or application or exploit the vulnerability by executing an arbitrary code.The second vulnerability, CVE-2021-34424 is a medium severity and a memory corruption vulnerability.This flaw could be used to get access to arbitrary parts of the product’s memory.Both these vulnerabilities can be fixed by updating Zoom products to their latest versions.

 

Vulnerability Details

 

 

References

https://explore.zoom.us/en/trust/security/security bulletin/

https://securityaffairs.co/wordpress/125122/security/video conferencing software zoom flaws.html

 

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox

Cyber Horizons 2025

What Last Year’s Attacks Reveal About Today’s Risks

Watch the Webinar on-demand and get a FREE copy of our Cyber Horizons 2025 report.

Our Speakers
Speaker 1

Prateek Bhajanka Global Field CISO & Former Gartner Analyst Hive Pro Inc.

Speaker 2

Ankit Mani Manager Threat Intel HiveForce Labs

Speaker 3

Sreevani Tonipe Senior Threat Researcher HiveForce Labs