Researchers from cyber-security firm ACROS Security have disclosed a zero-day vulnerability in the Windows client of the popular Zoom video conferencing software. The vulnerability is a remote code execution issue, which could allow the targeted user to perform some typical action such as opening a document file without any warning being shown to him. It affects Windows client running on old versions of Windows OS, including Windows 7 and Windows Server 2008 R2 and earlier. Zoom confirmed that the company is already working on a patch to quickly resolve it.”]
Source: https://securityaffairs.co/wordpress/105735/hacking/zoom-zero-day.html