CVE Daily

CVE-2024-45422

Improper input validation in some Zoom Apps before version 6.2.0 may allow an un...

Medium CVSS 6.5

Overview

Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated user to conduct a denial of service via network access.

CWE: CWE-20 — Improper Input Validation Published: 2024-11-19T20:15:31.430
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.5 (MEDIUM)
  • Detected tags: dos, unauth_access (tag impact: HIGH)

Recommended actions:

  • Rate limiting, resource quotas and circuit breakers.
  • Enforce authentication/authorization; reduce default endpoint exposure.

Recommended tools

This page may include affiliate links. If you purchase through them, we may earn a commission at no extra cost to you. Learn more.

Tags