CVE-2024-45421

Q: What is the severity of CVE-2024-45421?

CVE-2024-45421 has a CVSS score of 8.5 (HIGH). A buffer overflow vulnerability in some Zoom Apps allows authenticated users to escalate privileges through network access. This affects Zoom Apps users who have network connectivity to vulnerable systems. Attackers could potentially gain elevated access to execute arbitrary code.

8.5 HIGH

Buffer Overflow

📋 TL;DR

A buffer overflow vulnerability in some Zoom Apps allows authenticated users to escalate privileges through network access. This affects Zoom Apps users who have network connectivity to vulnerable systems. Attackers could potentially gain elevated access to execute arbitrary code.

💻 Affected Systems

Products:

Zoom Apps

Versions: Specific versions not detailed in reference; check Zoom advisory for exact affected versions

Operating Systems: All platforms running Zoom Apps

Default Config Vulnerable: ⚠️ Yes

Notes: Requires authenticated user with network access to vulnerable Zoom Apps instance

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

An authenticated attacker could achieve remote code execution with elevated privileges, potentially compromising the entire system and accessing sensitive data.

🟠

Likely Case

An authenticated user could escalate privileges within the Zoom Apps environment, gaining unauthorized access to features or data they shouldn't have.

🟢

If Mitigated

With proper network segmentation and least privilege access controls, the impact would be limited to the Zoom Apps environment only.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires authenticated access and network connectivity; buffer overflow exploitation typically requires specific conditions

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Zoom advisory ZSB-24043 for specific patched versions

Vendor Advisory: https://www.zoom.com/en/trust/security-bulletin/zsb-24043/

Restart Required: No

Instructions:

1. Visit Zoom's security bulletin ZSB-24043. 2. Identify affected versions. 3. Update Zoom Apps to the latest version. 4. Verify update completion.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict network access to Zoom Apps to only trusted users and systems

Least Privilege Access

all

Implement strict access controls to limit authenticated users' permissions

🧯 If You Can't Patch

Implement strict network access controls to limit exposure
Monitor for suspicious activity and implement application allowlisting

🔍 How to Verify

Check if Vulnerable:

Check Zoom Apps version against affected versions listed in Zoom advisory ZSB-24043

Check Version:

Check Zoom Apps settings or about section for version information

Verify Fix Applied:

Confirm Zoom Apps version is updated to patched version specified in Zoom advisory

📡 Detection & Monitoring

Log Indicators:

Unusual privilege escalation attempts
Buffer overflow error messages in application logs
Unexpected process creation

Network Indicators:

Unusual network traffic patterns to/from Zoom Apps
Suspicious authentication attempts

SIEM Query:

Search for 'Zoom Apps' AND ('buffer overflow' OR 'privilege escalation' OR 'unexpected process') in application logs

📊 Metadata

CVE ID: CVE-2024-45421

CVSS v3 Score: 8.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE: CWE-122

EPSS Score: 0.69% exploit probability (71.4th percentile)

Published: February 25, 2025

Last Updated: March 5, 2025

🔗 References

https://www.zoom.com/en/trust/security-bulletin/zsb-24043/ Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Meeting Software Development Kit by Zoom

Meeting Software Development Kit by Zoom

Meeting Software Development Kit by Zoom

Meeting Software Development Kit by Zoom

Meeting Software Development Kit by Zoom

Rooms by Zoom

Rooms by Zoom

Rooms by Zoom

Rooms Controller by Zoom

Rooms Controller by Zoom

Rooms Controller by Zoom

Rooms Controller by Zoom

Video Software Development Kit by Zoom

Video Software Development Kit by Zoom

Video Software Development Kit by Zoom

Video Software Development Kit by Zoom

Video Software Development Kit by Zoom

Workplace by Zoom

Workplace by Zoom

Workplace Desktop by Zoom

Workplace Desktop by Zoom

Workplace Desktop by Zoom

Workplace Virtual Desktop Infrastructure by Zoom

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Network Segmentation

Least Privilege Access

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities