Vulnerability Description
A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zoom | Zoom Plugin For Microsoft Outlook | < 5.0.25611.0521 |
Related Weaknesses (CWE)
References
- https://explore.zoom.us/en/trust/security/security-bulletin/Vendor Advisory
- https://explore.zoom.us/en/trust/security/security-bulletin/Vendor Advisory
FAQ
What is CVE-2021-34410?
CVE-2021-34410 is a vulnerability with a CVSS score of 7.8 (HIGH). A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root.
How severe is CVE-2021-34410?
CVE-2021-34410 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-34410?
Check the references section above for vendor advisories and patch information. Affected products include: Zoom Zoom Plugin For Microsoft Outlook.