Security Advisory

CVE-2020-11470

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-01 22:00:51

Last updated 2024-08-04 11:28:14

Assigner mitre

State PUBLISHED

Description

Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the users privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Zoom Clients microphone and camera access.

← Browse all CVEs View on cve.org ↗