Use of insecure MD5

Our app just when through a penetration security review. It found that the Zoom SDK uses the risky and outdated MD5 algorithm.

Usage of MD5 was found in two files, us/zoom/net/ and com/zipow/videobox/k/ (don’t know exactly which file as it was obfuscated)

Why are you using outdated MD5 algorithm? Will you change this in the future, in that case when?

Which Mobile Client SDK version?


Hi @mwoxblom, thanks for bringing this up.

After looking into this, there does not appear to be any usages of this algorithm in the latest version of the SDK. I think this may have been unused code that just was not yet removed from the SDK.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.