CVE-2021-34424— Process memory exposure in Zoom Client and other products

EPSS 0.27% · P50 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-34424

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Process memory exposure in Zoom Client and other products

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings for intune (for Android and iOS) before version 5.8.4, Zoom Client for Meetings for Chrome OS before version 5.0.1, Zoom Rooms for Conference Room (for Android, AndroidBali, macOS, and Windows) before version 5.8.3, Controllers for Zoom Rooms (for Android, iOS, and Windows) before version 5.8.3, Zoom VDI Windows Meeting Client before version 5.8.4, Zoom VDI Azure Virtual Desktop Plugins (for Windows x86 or x64, IGEL x64, Ubuntu x64, HP ThinPro OS x64) before version 5.8.4.21112, Zoom VDI Citrix Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS) before version 5.8.4.21112, Zoom VDI VMware Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS) before version 5.8.4.21112, Zoom Meeting SDK for Android before version 5.7.6.1922, Zoom Meeting SDK for iOS before version 5.7.6.1082, Zoom Meeting SDK for macOS before version 5.7.6.1340, Zoom Meeting SDK for Windows before version 5.7.6.1081, Zoom Video SDK (for Android, iOS, macOS, and Windows) before version 1.1.2, Zoom on-premise Meeting Connector before version 4.8.12.20211115, Zoom on-premise Meeting Connector MMR before version 4.8.12.20211115, Zoom on-premise Recording Connector before version 5.1.0.65.20211116, Zoom on-premise Virtual Room Connector before version 4.4.7266.20211117, Zoom on-premise Virtual Room Connector Load Balancer before version 2.5.5692.20211117, Zoom Hybrid Zproxy before version 1.0.1058.20211116, and Zoom Hybrid MMR before version 4.6.20211116.131_x86-64 which potentially allowed for the exposure of the state of process memory. This issue could be used to potentially gain insight into arbitrary areas of the product's memory.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

ZOOM Client 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

ZOOM Client是美国ZOOM公司的一款支持多种平台的视频会议客户端应用程序。 Zoom Client for Meetings存在安全漏洞，该漏洞源于在5.8.4版本之前发现了Zoom会议客户端(适用于Android、iOS、Linux、macOS和Windows)漏洞，在5.8.1版本之前发现了Zoom会议客户端(适用于Android和iOS)，在5.8.4版本之前发现了Zoom会议客户端(适用于Android和iOS)漏洞，Zoom Client for Meetings for Chrome

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Zoom Video Communications Inc	Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)	unspecified ~ 5.8.4	-
Zoom Video Communications Inc	Zoom Client for Meetings for Blackberry (for Android and iOS)	unspecified ~ 5.8.1	-
Zoom Video Communications Inc	Zoom Client for Meetings for intune (for Android and iOS)	unspecified ~ 5.8.4	-
Zoom Video Communications Inc	Zoom Client for Meetings for Chrome OS	unspecified ~ 5.0.1	-
Zoom Video Communications Inc	Zoom Rooms for Conference Room (for Android, AndroidBali, macOS, and Windows)	unspecified ~ 5.8.3	-
Zoom Video Communications Inc	Controllers for Zoom Rooms (for Android, iOS, and Windows)	unspecified ~ 5.8.3	-
Zoom Video Communications Inc	Zoom VDI Windows Meeting Client	unspecified ~ 5.8.4	-
Zoom Video Communications Inc	Zoom VDI Azure Virtual Desktop Plugins (for Windows x86 or x64, IGEL x64, Ubuntu x64, HP ThinPro OS x64)	unspecified ~ 5.8.4.21112	-
Zoom Video Communications Inc	Zoom VDI Citrix Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS)	unspecified ~ 5.8.4.21112	-
Zoom Video Communications Inc	Zoom VDI VMware Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS)	unspecified ~ 5.8.4.21112	-
Zoom Video Communications Inc	Zoom Meeting SDK for Android	unspecified ~ 5.7.6.1922	-
Zoom Video Communications Inc	Zoom Meeting SDK for iOS	unspecified ~ 5.7.6.1082	-
Zoom Video Communications Inc	Zoom Meeting SDK for macOS	unspecified ~ 5.7.6.1340	-
Zoom Video Communications Inc	Zoom Meeting SDK for Windows	unspecified ~ 5.7.6.1081	-
Zoom Video Communications Inc	Zoom Video SDK (for Android, iOS, macOS, and Windows)	unspecified ~ 1.1.2	-
Zoom Video Communications Inc	Zoom on-premise Meeting Connector	unspecified ~ 4.8.12.20211115	-
Zoom Video Communications Inc	Zoom on-premise Meeting Connector MMR	unspecified ~ 4.8.12.20211115	-
Zoom Video Communications Inc	Zoom on-premise Recording Connector	unspecified ~ 5.1.0.65.20211116	-
Zoom Video Communications Inc	Zoom on-premise Virtual Room Connector	unspecified ~ 4.4.7266.20211117	-
Zoom Video Communications Inc	Zoom on-premise Virtual Room Connector Load Balancer	unspecified ~ 2.5.5692.20211117	-
Zoom Video Communications Inc	Zoom Hybrid Zproxy	unspecified ~ 1.0.1058.20211116	-
Zoom Video Communications Inc	Zoom Hybrid MMR	unspecified ~ 4.6.20211116.131_x86-64	-

II. Public POCs for CVE-2021-34424

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-34424

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)

Same vendor: Zoom Video Communications Inc

V. Comments for CVE-2021-34424

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-34424— Process memory exposure in Zoom Client and other products

I. Basic Information for CVE-2021-34424

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-34424

III. Intelligence Information for CVE-2021-34424

IV. Related Vulnerabilities

V. Comments for CVE-2021-34424

Leave a comment