CVE-2019-13450
First published: Tue Jul 09 2019(Updated: )
In the Zoom Client through 4.4.4 and RingCentral 7.0.136380.0312 on macOS, remote attackers can force a user to join a video call with the video camera active. This occurs because any web site can interact with the Zoom web server on localhost port 19421 or 19424. NOTE: a machine remains vulnerable if the Zoom Client was installed in the past and then uninstalled. Blocking exploitation requires additional steps, such as the ZDisableVideo preference and/or killing the web server, deleting the ~/.zoomus directory, and creating a ~/.zoomus plain file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ringcentral Ringcentral | =7.0.136380.0312 | |
| Zoom Zoom | <=4.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/109082
- https://assets.zoom.us/docs/pdf/Zoom+Response+Video-On+Vulnerability.pdf
- https://blog.zoom.us/wordpress/2019/07/08/response-to-video-on-concern/
- https://bugs.chromium.org/p/chromium/issues/detail?id=951540
- https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
- https://news.ycombinator.com/item?id=20387298
- https://twitter.com/moreati/status/1148548799813640193
- https://twitter.com/zoom_us/status/1148710712241295361
- https://medium.com/%40jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5
Frequently Asked Questions
What is CVE-2019-13450?
CVE-2019-13450 is a vulnerability in the Zoom Client and RingCentral on macOS that allows remote attackers to force a user to join a video call with the video camera active.
How does CVE-2019-13450 occur?
This vulnerability occurs because any website can interact with the Zoom web server on localhost port 19421 or 19424.
Which software versions are affected by CVE-2019-13450?
The Zoom Client up to version 4.4.4 and RingCentral version 7.0.136380.0312 on macOS are affected.
What is the severity of CVE-2019-13450?
The severity of CVE-2019-13450 is medium, with a CVSS score of 6.5.
How can I mitigate CVE-2019-13450?
To mitigate CVE-2019-13450, update to the latest version of the Zoom Client and RingCentral software.
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- vendor/ringcentral
- canonical/ringcentral ringcentral
- version/ringcentral ringcentral/7.0.136380.0312
- vendor/zoom
- canonical/zoom zoom
- version/zoom zoom/4.4.4