The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zoom virtual desktop infrastructure |
||
zoom meetings |
||
zoom rooms for conference rooms |