Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom meetings vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-36539
Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information.
Zoom Video Software Development Kit 1.8.0
Zoom Meetings 5.15.0
Zoom Meetings 5.15.1
Zoom Zoom 5.15.0
Zoom Rooms 5.15.0
Zoom Zoom 5.15.1
Zoom Poly Ccx 700 Firmware 5.15.0
Zoom Poly Ccx 600 Firmware 5.15.0
Zoom Yealink Vp59 Firmware 5.15.0
Zoom Yealink Mp54 Firmware 5.15.0
Zoom Yealink Mp56 Firmware 5.15.0
3.3
CVSSv3
CVE-2022-28764
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-devi...
Zoom Vdi Windows Meeting Clients
Zoom Rooms
Zoom Meetings
6.5
CVSSv3
CVE-2023-39205
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
Zoom Meetings
Zoom Virtual Desktop Infrastructure
Zoom Zoom
Zoom Video Software Development Kit
7.5
CVSSv3
CVE-2022-22781
The Zoom Client for Meetings for MacOS (Standard and for IT Admin) prior to version 5.9.6 failed to properly check the package version during the update process. This could lead to a malicious actor updating an unsuspecting user’s currently installed version to a less secur...
Zoom Meetings
6.5
CVSSv3
CVE-2022-22780
The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the following product versions: Android before version 5.8.6, iOS before version 5.9.0, Linux before version 5.8.6, macOS before version 5.7.3, and Windows before version 5.6.3. This could l...
Zoom Meetings
8.1
CVSSv3
CVE-2022-22784
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly parse XML stanzas in XMPP messages. This can allow a malicious user to break out of the current XMPP message context and create a new message context to have the re...
Zoom Meetings
9.1
CVSSv3
CVE-2022-22785
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly constrain client session cookies to Zoom domains. This issue could be used in a more sophisticated attack to send an unsuspecting users Zoom-scoped session cookies ...
Zoom Meetings
7.5
CVSSv3
CVE-2022-22787
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.10.0 fails to properly validate the hostname during a server switch request. This issue could be used in a more sophisticated attack to trick an unsuspecting users client to connect to a m...
Zoom Meetings
1 Article
7.8
CVSSv3
CVE-2020-11469
Zoom Client for Meetings up to and including 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root access by replacing runwithroot.
Zoom Meetings
3.3
CVSSv3
CVE-2020-11470
Zoom Client for Meetings up to and including 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera access by loading a crafted library and thereby inheriting Zoom Cl...
Zoom Meetings
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »