CVE-2021-34420

Summary

The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. This could lead to a malicious actor installing malicious software on a customer’s computer.

Affected Software

VendorProductVersion RangeStatus
Zoom Video Communications IncZoom Client for Meetings for Windowsunspecified < 5.5.4affected

Weaknesses

  • Improper Verification of Cryptographic Signature

ADP Enrichment

CVE Program Container

Additional References

References