Security researcher Patrick Wardle disclosed two zero-day vulnerabilities in Zoom’s teleconferencing platform on Wednesday. The company on Thursday rushed out patches for these flaws and one other that could give remote attackers the ability to steal users’ Windows log-in credentials and execute arbitrary commands. Zoom CEO Eric Yuan urged users to immediately apply the patches. In recent days, Zoom has faced intense scrutiny over the platform’s security and privacy practices. In addition to Wardle’s disclosure, other researchers published reports this week concerning a different flaw in the Windows client for Zoom.”]
Source: https://www.cuinfosecurity.com/zoom-rushes-patches-for-zero-day-vulnerabilities-a-14049