vulnerability

Zoom Zoom: CVE-2021-34424: Process memory exposure in Zoom Client and other products

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Nov 24, 2021	Jan 8, 2025	Feb 9, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Nov 24, 2021

Added

Jan 8, 2025

Modified

Feb 9, 2026

Description

A vulnerability was discovered in the products listed in the "Affected Products" section of this bulletin which potentially allowed for the exposure of the state of process memory. This issue could be used to potentially gain insight into arbitrary areas of the product’s memory.Zoom has addressed this issue in the latest releases of the products listed in the section below. Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates.

Solution

zoom-zoom-upgrade-latest

References

CVE-2021-34424
https://attackerkb.com/topics/CVE-2021-34424
URL-https://www.zoom.com/en/trust/security-bulletin/ZSB-21020
CWE-125

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today