This issue started last week, as security researchers identified an error in the Zoom software that took advantage of the app's click-to-turn feature. If a person clicked a link in the browser, they would automatically join a conference and their webcam would turn on without their explicit permission. Zoom originally claimed that the error was a necessary solution for the software to work properly with Apple's Safari browser, but has since changed its approach and worked to resolve the issue.
Last week, Zoom announced that it removed access to a local web server that enabled the vulnerability. One day later, Apple, working with Zoom, released an automatic security update for macOS that addressed the issue. The company plans to continue to release repairs for all Zoom partners such as RingCenter and Zhumu.