Local Privilege Escalation via Zoom Client for Meetings Installation

Local Privilege Escalation via Zoom Client for Meetings Installation

CVE-2021-34412 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

During the installation process for all versions of the Zoom Client for Meetings for Windows before 5.4.0, it is possible to launch Internet Explorer. If the installer was launched with elevated privileges such as by SCCM this can result in a local privilege escalation.

Learn more about our Cis Benchmark Audit For Zoom.