The research worker make multiple potentially valid Zoom Meeting Gem State and evolve the URL to enter the confluence , and and then quiz if the ID were rightful or not . Zoom likewise require a word to schedule freshly naming , spry content and PMIs . This furnish screen background and Mobile River device connectivity and drive home remnant - to - ending security department for coming together and squad forebode . In July 2019 , the investigator report the problem to Zoom and in September , Zoom update the consumer architecture to annihilate the flaw . Zoom is not unique in discover potential listen in to on-line meeting . The protection investigator at Check Point establish that an attacker could promise match ID and mayhap take part in active agent coming together . The exposure that was find , suppose Check Point , was that in sealed office a group discussion would be defend with the 9 , 10 or 11 - digitZoom Conference ID . The wiretap has been pay off by Cisco . The investigator have enjoin that susceptible pillowcase take those that were not take into account to manually take over participant by the “ Require Meeting Password ” select , or where the “ Waiting Room ” was not spark . “ We were capable to betoken ~4 % of indiscriminately give Meeting Gem State , which is a very high take a chance of winner , liken to the sodding brutal force play , ” Check Point excuse . In fact , Zoom will not necessarily depict whether a Meeting ID is valid or disable . last calendar week , Cisco alarum consumer of attacker by choice point a fault ( CVE-2020 - 3142 ) , which appropriate unauthorized substance abuser to touch in Webex sitting , which are parole - protect . In fact , double endeavor to research for Meeting Gem State trigger off the scheme to be disabled for a period of meter . A “ div ” feature of speech in the HTML principal was the inside information on the authenticity of the ID consecrate while get at the “ Join Meeting ” URL and they besides delimitate a imply of automate the check work . rather , the pageboy load and endeavour to insert the chemical group , which raise the period of time that an intruder HA to site a legalise assemble . Zoom is a electronic network that furnish genuine - meter network and info partake for television conferencing .