CVE-2021-34412
HIGHZoom Meetings < 5.4.0 - Local Privilege Escalation via Internet Explorer Launch
Title source: llmDescription
During the installation process for all versions of the Zoom Client for Meetings for Windows before 5.4.0, it is possible to launch Internet Explorer. If the installer was launched with elevated privileges such as by SCCM this can result in a local privilege escalation.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://explore.zoom.us/en/trust/security/security-bulletin/
Scores
CVSS v3
7.8
EPSS
0.0012
EPSS Percentile
30.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (1)
zoom/meetings
< 5.4.0
Published
Sep 27, 2021
Tracked Since
Feb 18, 2026