Vulnerability · NVD

CVE-2024-27247

MEDIUM 5.5 Published on 2024-04-09

Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access.

Attack vector : Local

Show raw CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:N

EPSS 0.02% exploit very unlikely percentile 4.3%

Tracked apps referencing this CVE

For each app: the affected range, the fixing version, and where the tracked app stands today.

Zoom macOS us.zoom.xos

Affected <5.17.10 Fixed in 5.17.10 Latest tracked — undetermined

Vulnerable CPE configurations (1)

Vendor	Product	Platform	Versions	CPE 2.3 URI
zoom	zoom macOS	macOS	<5.17.10	cpe:2.3:a:zoom:zoom::::::macos::*

View on NVD ↗