1.0 Introduction
Recently, Zoom has released security updates to address an Information Disclosure Vulnerability affecting several Zoom products.
2.0 Impact
This vulnerability vulnerability may allow unauthorized users to access and potentially expose sensitive information shared during Zoom meetings, such as personal data, business-critical information, or any confidential content transmitted through the platform.
3.0 Affected Products
- Multiple Zoom Products
4.0 CVE Details
| CVE | Severity | Description |
| CVE-2024-45424 | Medium | Zoom Workplace Apps - Business Logic Error |
5.0 Recommendations
Users and system administrators are encouraged to review the Zoom Security Bulletin and upgrade to the latest version.
Kindly refer to the URL for more information:
Generally, CyberSecurity Malaysia advises the users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact us through the following channels:
E-mail: cyber999[at]cybersecurity.my
Phone: 1-300-88-2999 (monitored during business hours)
Mobile: +60 19 2665850 (24x7 call incident reporting)
Business Hours: Mon - Fri 09:00 -18:00 MYT
Web: https://www.mycert.org.my
6.0 References