CVE-2024-24690

MEDIUM

Zoom Clients - DoS

Title source: llm

Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access.

CVSS v3 5.4

EPSS 0.0008

EPSS Percentile 22.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-1284

Status published

Products (5)

zoom/meeting_software_development_kit < 5.16.5

zoom/rooms < 5.17.0

zoom/vdi_windows_meeting_clients < 5.14.14

zoom/video_software_development_kit < 5.16.5

zoom/zoom < 5.16.5 (5 CPE variants)

Published Feb 14, 2024

Tracked Since Feb 18, 2026