Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom zoom vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-28599
Zoom clients before 5.13.10 contain an HTML injection vulnerability. A malicious user could inject HTML into their display name potentially leading a victim to a malicious website during meeting creation.
Zoom Zoom
5.4
CVSSv3
CVE-2023-28600
Zoom for MacOSclients before 5.14.0 contain an improper access control vulnerability. A malicious user may be able to delete/replace Zoom Client files potentially causing a loss of integrity and availability to the Zoom Client.
Zoom Zoom
7.5
CVSSv3
CVE-2023-22881
Zoom clients before version 5.13.5 contain a STUN parsing vulnerability. A malicious actor could send specially crafted UDP traffic to a victim Zoom client to remotely cause the client to crash, causing a denial of service.
Zoom Zoom
7.5
CVSSv3
CVE-2023-22882
Zoom clients before version 5.13.5 contain a STUN parsing vulnerability. A malicious actor could send specially crafted UDP traffic to a victim Zoom client to remotely cause the client to crash, causing a denial of service.
Zoom Zoom
8.8
CVSSv3
CVE-2019-13567
The Zoom Client prior to 4.4.53932.0709 on macOS allows remote code execution, a different vulnerability than CVE-2019-13450. If the ZoomOpener daemon (aka the hidden web server) is running, but the Zoom Client is not installed or can't be opened, an attacker can remotely ex...
Zoom Zoom
7.1
CVSSv3
CVE-2022-36928
Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability. A third party app could exploit this vulnerability to read and write to the Zoom application data directory.
Zoom Zoom
6.5
CVSSv3
CVE-2023-34114
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients prior to 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access.
Zoom Zoom
6.5
CVSSv3
CVE-2019-13449
In the Zoom Client prior to 4.4.2 on macOS, remote attackers can cause a denial of service (continual focus grabs) via a sequence of invalid launch?action=join&confno= requests to localhost port 19421.
Zoom Zoom
9.8
CVSSv3
CVE-2018-15715
Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116), and Linux (2.4.129780.0915 and below) are vulnerable to unauthorized message processing. A remote unauthenticated attacker can spoof UDP messages from a meeting attendee or Zoom serve...
Zoom Zoom
6.5
CVSSv3
CVE-2023-39209
Improper input validation in Zoom Desktop Client for Windows prior to 5.15.5 may allow an authenticated user to enable an information disclosure via network access.
Zoom Zoom
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »