An exploit for a zero-day remote code execution vulnerability affecting the Zoom Windows client is currently being sold for $500,000. One designed to abused a bug in the Zoom video conferencing platform’s platform’s software client is also being sold. Zero-days are vulnerabilities that haven’t yet been patched by the affected software or hardware vendor and that allow attackers to compromise any targets running or using the unpatched products. Some exploit acquisition platforms such as Zerodium pay between $2,000 to $2.000 depending on the quality of the submitted exploit.
Source: https://www.bleepingcomputer.com/news/security/exploit-for-zoom-windows-zero-day-being-sold-for-500-000/