CVE-2019-19810 in Zoom and Eleveo Products
Published on October 28, 2021
Zoom Call Recording 6.3.1 from Eleveo is vulnerable to Java Deserialization attacks targeting the inbuilt RMI service. A remote unauthenticated attacker can exploit this vulnerability by sending crafted RMI requests to execute arbitrary code on the target host.
Products Associated with CVE-2019-19810
stack.watch emails you whenever new vulnerabilities are published in Zoom Call Recording or Eleveo Call Recording. Just hit a watch button to start following.
Exploit Probability
EPSS
8.68%
Percentile
92.42%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.