Security Advisory – High Severity Untrusted Search Path Vulnerability in Zoom Windows Clients

Zoom has alerted users to a high severity vulnerability, CVE-2024-24697, affecting certain 32-bit Windows clients. This vulnerability, with a CVSS score of 7.2, could enable an authenticated user to perform privilege escalation through local access. Affected software versions include the Zoom Desktop Client, VDI Client, Meeting SDK, and Rooms Client for Windows, all prior to specific versions. Users are encouraged to update their software to mitigate this risk.

For more details, please visit the Zoom Security Bulletin.