Zoom Releases Patch for macOS Vulnerability

July 11, 2019 · 1 min read

Zoom graphic

On July 9, 2019, Zoom released a patch for a security vulnerability affecting macOS devices. The vulnerability allows any website to join a user to a Zoom call and activate their webcam without their permission. The patch will remove a local web server Zoom uses to join users to a meeting. In addition, the patch turns off a user's webcam upon joining a meeting.

Apple has released an auto-update that applies this patch to your Zoom client without user intervention required. You can verify the patch has been applied on your macOS device by performing the following steps:

  1. Launch the Zoom application.
  2. Click zoom.us in the top left corner of your device.
  3. Click Check for Updates.
  4. Confirm the Zoom version listed is 4.4.4 (53932.0709).

Resources

For more information on this vulnerability, visit the following links:

If you have any questions concerning this vulnerability, please contact the CTS Help Desk at 412.396.4357 or help@duq.edu.