This week, millions of Zoom users in India received a major security warning from the Indian Computer Emergency Response Team (CERT-In). The government agency issued an alert recently, highlighting multiple vulnerabilities in Zoom products that pose serious cybersecurity risks. The security advisory rates the severity of these vulnerabilities from high to medium, depending on the platform affected.
According to the bulletin, these vulnerabilities could allow attackers to escalate privileges, disclose sensitive information, or even cause denial-of-service (DoS) conditions on the targeted systems. The flaws affect a wide range of Zoom versions across several platforms, including Windows, Android, macOS, iPhones, and Linux.
The affected versions are:
Zoom Workplace Desktop App for Linux before version 6.0.0, Zoom Workplace Desktop App for Windows before version 6.0.0, Zoom Workplace Desktop App for macOS before version 6.0.0, Zoom Workplace App for iOS before version 6.0.0, Zoom Workplace App for Android before version 6.0.0, Zoom Meeting SDK for Windows before version 6.0.10, Zoom Meeting SDK for iOS before version 6.0.10, Zoom Meeting SDK for Android before version 6.0.10
CERT-In has urged users to apply the latest updates provided by Zoom to address these vulnerabilities promptly. Failure to do so could expose their systems to potential attacks.
Zoom, which is widely used in India for video meetings and other business activities, had earlier this year laid off nearly 150 employees, representing less than 2 per cent of its workforce. Despite the layoffs, the company continues to recruit for roles in artificial intelligence, sales, product development, and operations.