Privilege Escalation Vulnerability in Zoom Client for MacOS

Privilege Escalation Vulnerability in Zoom Client for MacOS

CVE-2022-28751 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains a vulnerability in the package signature validation during the update process. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.

Learn more about our Cis Benchmark Audit For Apple Macos.