New Delhi: The Indian Computer Emergency Response Team (CERT-in) Has Issured A High-Risk Warning Concerning Several Vulnerabilityes Found in Zoom Software.

Cert-in has accessed high risk of data of data of Data Manipulation & Service Disrupt for all end-aser organizations and individuals using zoom applications.

Mulnerabilites have been reported in zoom products, which could be exploited by an attacker to affect the integrity of the app, Gain Elevated Privilles or Cause Denial of Service Condition on the targeted system, crt-in said.

Zoom software affected

Zoom Workplace Desktop App for Macos, Windows, Linux Before Version 6.4.0
Zoom Workplace VDI Client for Windows Before Version 6.3.10
Zoom Workplace App for iOS and Android Before Version 6.4.0
Zoom Rooms Client for Windows, Android, iPad & Macos Before Version 6.4.0
Zoom Rooms Controller for Windows, Macos, Linux & Android Before Version 6.4.0
Zoom Meeting SDK for Macos, iOS, Windows, Linux & Android Before Version 6.4.0

CERT-in SAID, multiple vulnerabilitys exist in zoom products due to improper input validation, race conditions and memory corruption issues. Successful exploitation of these vulnerabilitys unI attacker to affect the integrity of the app, Gain elevated privateges or cause deenial of service condition only on the targeted System

The nodal agency has advised that users should use approves updates as mentioned by the vendor.