Security Advisory – Medium Severity CVE-2024-24695 Vulnerability in Zoom Windows Clients

Zoom has identified a medium severity vulnerability, CVE-2024-24695, in its Desktop Client for Windows, VDI Client for Windows, and Meeting SDK for Windows, characterized by improper input validation. This vulnerability, with a CVSS score of 6.8, could potentially allow an authenticated user to disclose information over the network. Users are advised to update their Zoom software to version 5.17.0 or later for Desktop and Meeting SDK, and version 5.17.5 for VDI Client, excluding specific versions, to mitigate this risk.

For more information, visit Zoom’s Security Bulletin.