ByteOS Network

NVD Vulnerability Details :

CVE-2024-39826

Modified

Source-security@zoom.us

Published At-15 Jul, 2024 | 18:15

Updated At-02 Oct, 2025 | 21:15

Race condition in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an authenticated user to conduct information disclosure via network access.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.8	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

Type: Secondary

Version: 3.1

Base score: 6.8

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CPE Matches

Zoom Communications, Inc.

>>meeting_software_development_kit>>Versions before 6.0.0(exclusive)

cpe:2.3:a:zoom:meeting_software_development_kit:*:*:*:*:*:windows:*:*

Zoom Communications, Inc.

>>workplace_desktop>>Versions before 6.0.0(exclusive)

cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*

Zoom Communications, Inc.

>>workplace_virtual_desktop_infrastructure>>Versions before 5.17.13(exclusive)

cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*

Weaknesses

CWE ID	Type	Source
CWE-367	Secondary	security@zoom.us
CWE-22	Primary	nvd@nist.gov

CWE ID: CWE-367

Type: Secondary

Source: security@zoom.us

CWE ID: CWE-22

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.zoom.com/en/trust/security-bulletin/zsb-24023	security@zoom.us	Vendor Advisory
https://www.zoom.com/en/trust/security-bulletin/zsb-24023	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory

Hyperlink: https://www.zoom.com/en/trust/security-bulletin/zsb-24023

Source: security@zoom.us

Resource:

Vendor Advisory

Hyperlink: https://www.zoom.com/en/trust/security-bulletin/zsb-24023

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History