Two zero-day flaws have been uncovered in Zoom s MacOS client version. The web conferencing platform vulnerabilities could give local, unprivileged attackers root privileges, and allow them to access victims microphone and camera. As of Thursday, the two vulnerabilities have now been patched, according to Zoom. The two flaws come with the caveat that an attacker needs a local foothold on systems to exploit them so bad actors would first need physical access to a victims’ computer.
Source: https://threatpost.com/two-zoom-zero-day-flaws-uncovered/154337/