CVE-2022-36925

Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged application. That key can then be used to interact with the daemon service to execute privileged functions and cause a local denial of service.

CVSS v3 4.4 MEDIUM

4.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 2.5

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://explore.zoom.us/en/trust/security/security-bulletin/	Vendor Advisory
https://explore.zoom.us/en/trust/security/security-bulletin/	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*

History

21 Nov 2024, 07:14

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.8~~	v2 : unknown v3 : 4.4
References	~~() https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory~~	() https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory
Summary		(es) Los clientes de Zoom Rooms para macOS anteriores a la versión 5.11.4 contienen un mecanismo de generación de claves inseguro. La clave de cifrado utilizada para IPC entre el servicio demonio de Zoom Rooms y el cliente de Zoom Rooms se generó utilizando parámetros que podrían obtenerse mediante una aplicación local con pocos privilegios. Luego, esa clave se puede utilizar para interactuar con el servicio demonio para ejecutar funciones privilegiadas y provocar una denegación de servicio local.

Information

Published : 2023-01-09 19:15

Updated : 2024-11-21 07:14

NVD link : CVE-2022-36925

Mitre link : CVE-2022-36925

CVE.ORG link : CVE-2022-36925

JSON object : View

Products Affected

zoom

rooms

CWE

CWE-321

Use of Hard-coded Cryptographic Key

CWE-798

Use of Hard-coded Credentials

{"id": "CVE-2022-36925", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@zoom.us", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 2.5, "exploitabilityScore": 1.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2023-01-09T19:15:10.987", "references": [{"url": "https://explore.zoom.us/en/trust/security/security-bulletin/", "tags": ["Vendor Advisory"], "source": "security@zoom.us"}, {"url": "https://explore.zoom.us/en/trust/security/security-bulletin/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@zoom.us", "description": [{"lang": "en", "value": "CWE-321"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged application. That key can then be used to interact with the daemon service to execute privileged functions and cause a local denial of service."}, {"lang": "es", "value": "Los clientes de Zoom Rooms para macOS anteriores a la versi\u00f3n 5.11.4 contienen un mecanismo de generaci\u00f3n de claves inseguro. La clave de cifrado utilizada para IPC entre el servicio demonio de Zoom Rooms y el cliente de Zoom Rooms se gener\u00f3 utilizando par\u00e1metros que podr\u00edan obtenerse mediante una aplicaci\u00f3n local con pocos privilegios. Luego, esa clave se puede utilizar para interactuar con el servicio demonio para ejecutar funciones privilegiadas y provocar una denegaci\u00f3n de servicio local."}], "lastModified": "2024-11-21T07:14:05.920", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "A4384482-1475-4DDF-8C12-1E932B6F7F7D", "versionEndExcluding": "5.11.4"}], "operator": "OR"}]}], "sourceIdentifier": "security@zoom.us"}