Improper Verification of Cryptographic Signature Vulnerability CVE-2022-28751 for Zoom Meetings

description-logoDescription

The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains a vulnerability in the package signature validation during the update process. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.

affected-products-logoAffected Applications

Zoom

CVE References

CVE-2022-28751