cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

On April 16, between 2:25 P.M. ET and 4:12 P.M. ET, the domain zoom.us was not available due to a server block by GoDaddy Registry. This block was the result of a communication error between Zoom’s domain registrar, Markmonitor, and GoDaddy Registry, which resulted in GoDaddy Registry mistakenly shutting down zoom.us domain. Zoom, Markmonitor, and GoDaddy worked quickly to identify and remove the block, which restored service to the domain zoom.us. There was no product, security or network failure at Zoom during the outage. GoDaddy and Markmonitor are working together to prevent this from happening again.

CVE-2023-4807

patelra
Newcomer
Newcomer

‎2023-11-10 09:43 AM

Hello, 

 

I just had an external partner reach out to me to inform us they are removing Zoom from their environment due to OpenSLL 3.1.1 being a High-Risk vulnerability (CVE-2023-4807). I see in the security bulletin that Zoom moved from OpenSSL 1.1.1 in October for this very reason but now 3.1.1 which is the current is vulnerable, but I am unable to find anything on Zoom forums about this being known or worked on. Is this something that is urgently being patched?

Topics:
2 REPLIES 2

user16
Explorer
Explorer

‎2023-11-10 11:20 AM

some kind of update or progress on this would be very helpful. i'm at the point where i'm starting to push leadership to think about removing this from our own environment for the same reason.

damookman47
Newcomer
Newcomer

‎2023-11-16 06:31 AM

Same here - If Zoom does not address this issue, we will be moving to another solution. Our licenses are up at the beginning of February, 2024. The clock is ticking!!!

Top