"Critical Zoom Room Bug Allowed to Gain Access to Zoom Tenants"

AppOms researchers discovered a vulnerability in Zoom Room while participating in the HackerOne live hacking event H1-4420. Zoom Room, a Zoom video conferencing platform feature, aims to enhance collaboration in physical meeting spaces, such as conference rooms or huddle rooms. The researchers warned that the vulnerability, discovered in June 2023, could allow an attacker to hijack a Zoom Room's service account and access the tenant of the victim's organization. Invisible access to confidential information in Team Chat, Whiteboards, and other Zoom applications is also possible. This article continues to discuss the potential exploitation and impact of the critical vulnerability in Zoom Room.

Security Affairs reports "Critical Zoom Room Bug Allowed to Gain Access to Zoom Tenants"

Submitted by grigby1