Security News > 2021 > November > America, when you're done hitting us with the ban hammer, see these on-prem Zoom vulns, says Positive

America, when you're done hitting us with the ban hammer, see these on-prem Zoom vulns, says Positive
2021-11-15 20:27

US-sanctioned Positive Technologies has pointed out three vulnerabilities in Zoom that can be exploited to crash or hijack on-prem instances of the videoconferencing system.

One of the trio of bugs is an input validation flaw, which can be abused by a malicious Zoom portal administrator to inject and execute arbitrary commands on the machine hosting the software.

We imagine a scenario in which someone in, say, HR is made an admin of the company Zoom installation, and their work PC is hijacked by a miscreant who then exploits this vulnerability to get a foothold on an internal server system, and go exploring from there.

Two related holes, CVE-2021-34415 and CVE-2021-34416, could be exploited to crash Zoom.

Zoom on-premise Recording Connector before version 3.8.42.20200905.

Zoom spokesman Matt Nagel told The Register: "Zoom takes the security of its platform very seriously, and has addressed these issues. We recommend users stay up to date with the latest version of Zoom to take advantage of our newest features and security updates."


News URL

https://go.theregister.com/feed/www.theregister.com/2021/11/15/positive_zoom_flaw/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-09-27 CVE-2021-34416 Improper Input Validation vulnerability in Zoom products
The network address administrative settings web portal for the Zoom on-premise Meeting Connector before version 4.6.360.20210325, Zoom on-premise Meeting Connector MMR before version 4.6.360.20210325, Zoom on-premise Recording Connector before version 3.8.44.20210326, Zoom on-premise Virtual Room Connector before version 4.4.6752.20210326, and Zoom on-premise Virtual Room Connector Load Balancer before version 2.5.5495.20210326 fails to validate input sent in requests to update the network configuration, which could lead to remote command injection on the on-premise image by the web portal administrators.
network
low complexity
zoom CWE-20
7.5
7.5
2021-09-27 CVE-2021-34415 Allocation of Resources Without Limits or Throttling vulnerability in Zoom Meeting Connector
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash.
network
low complexity
zoom CWE-770
7.8
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Zoom 52 4 50 57 9 120