CVE-2020-11470 is a vulnerability in Zoom Meetings
Published on April 1, 2020
Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Zoom Client's microphone and camera access.
Products Associated with CVE-2020-11470
Want to know whenever a new CVE is published for Zoom Meetings? stack.watch will email you.
Exploit Probability
EPSS
0.07%
Percentile
21.57%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.