Two remote code execution vulnerabilities
were recently patched:
· CVE-2020-6109 – exploitable via Zoom chat message with
animated GIF causing arbitrary code execution.
· CVE-2020-6110 – also related to chat messages, but in
this case with embedded code snippets.
Both vulnerabilities were patched and update
is available.
Maybe Zoom will finally introduce free end-to-end
encryption?
No comments:
Post a Comment