CVE-2024-39818

Summary

Protection mechanism failure for some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct information disclosure via network access.

Affected Software

VendorProductVersion RangeStatus
Zoom Communications Inc.Zoom Workplace Apps and SDKssee referencesaffected

Weaknesses

  • CWE-522: CWE-522 Insufficiently Protected Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References