U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2021-34423

Change History

Initial Analysis 12/03/2021 12:55:38 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:controllers_for_zoom_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:controllers_for_zoom_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:controllers_for_zoom_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings_for_blackberry:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.1
     OR
          cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings_for_blackberry:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.1
     OR
          cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings_for_intune:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:meetings_for_intune:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
     OR
          cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.3
     OR
          cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:android_meeting_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 5.7.6.1922
     *cpe:2.3:a:zoom:iphone_os_meeting_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 5.7.6.1082
     *cpe:2.3:a:zoom:macos_meeting_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 5.7.6.1340
     *cpe:2.3:a:zoom:windows_meeting_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 5.7.6.1081
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:android_video_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2
     *cpe:2.3:a:zoom:iphone_os_video_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2
     *cpe:2.3:a:zoom:macos_video_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2
     *cpe:2.3:a:zoom:windows_video_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 1.1.2
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:hybrid_mmr:*:*:*:*:*:*:*:* versions up to (excluding) 4.6.20211116.131
     *cpe:2.3:a:zoom:hybrid_zproxy:*:*:*:*:*:*:*:* versions up to (excluding) 1.0.1058.20211116
     *cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_controller:*:*:*:*:*:*:*:* versions up to (excluding) 4.8.12.20211115
     *cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_mmr:*:*:*:*:*:*:*:* versions up to (excluding) 4.8.12.20211115
     *cpe:2.3:a:zoom:zoom_on-premise_recording_connector:*:*:*:*:*:*:*:* versions up to (excluding) 5.1.0.65.20211116
     *cpe:2.3:a:zoom:zoom_on-premise_virtual_room_connector:*:*:*:*:*:*:*:* versions up to (excluding) 4.4.7266.20211117
     *cpe:2.3:a:zoom:zoom_on-premise_virtual_room_connector_load_balancer:*:*:*:*:*:*:*:* versions up to (excluding) 2.5.5692.20211117
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:meetings_for_chrome_os:*:*:*:*:*:*:*:* versions up to (excluding) 5.0.1
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:vdi_azure_virtual_desktop:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4.21112
     *cpe:2.3:a:zoom:vdi_citrix:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4.21112
     *cpe:2.3:a:zoom:vdi_vmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4.21112
     *cpe:2.3:a:zoom:vdi_windows_meeting_client:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:zoom:virtual_desktop_infrastructure:*:*:*:*:*:*:*:* versions up to (excluding) 5.8.4
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
NIST CWE-120
Changed Reference Type
https://explore.zoom.us/en/trust/security/security-bulletin No Types Assigned
https://explore.zoom.us/en/trust/security/security-bulletin Vendor Advisory