Vulnerabilities > CVE-2020-11469 - Files or Directories Accessible to External Parties vulnerability in Zoom Meetings 4.6.8
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root access by replacing runwithroot.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |