Cloud video conferencing provider Zoom has released patches for multiple vulnerabilities in its product that could have allowed criminals to intercept data from meetings and attack customer infrastructure. The now patched vulnerabilities could have enabled attackers to obtain server access with maximum privileges and navigate further on the companys network. The most serious flaw, rated as high with a CVSS Score of 7.9, was the network proxy page on the web portal for products such as Zoom On-Premise Meeting Connector Controller.”]
Source: https://www.fraudtoday.io/zoom-patches-multiple-vulnerabilities-a-17906