Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom zoom vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-36534
Path traversal in Zoom Desktop Client for Windows prior to 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
Zoom Zoom
6.5
CVSSv3
CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow an authenticated user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
7.8
CVSSv3
CVE-2023-36540
Untrusted search path in the installer for Zoom Desktop Client for Windows prior to 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.
Zoom Zoom
8.8
CVSSv3
CVE-2023-36541
Insufficient verification of data authenticity in Zoom Desktop Client for Windows prior to 5.14.5 may allow an authenticated user to enable an escalation of privilege via network access.
Zoom Zoom
9.8
CVSSv3
CVE-2023-39216
Improper input validation in Zoom Desktop Client for Windows prior to 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
Zoom Zoom
7.5
CVSSv3
CVE-2023-39217
Improper input validation in Zoom SDK’s prior to 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.
Zoom Meeting Software Development Kit
Zoom Video Software Development Kit
4.9
CVSSv3
CVE-2023-39218
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow a privileged user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
5.3
CVSSv3
CVE-2023-3947
The Video Conferencing with Zoom plugin for WordPress is vulnerable to Sensitive Information Exposure due to hardcoded encryption key on the 'vczapi_encrypt_decrypt' function in versions up to, and including, 4.2.1. This makes it possible for unauthenticated malicious u...
Imdpen Video Conferencing With Zoom
7.5
CVSSv3
CVE-2023-30200
In the module “Image: WebP, Compress, Zoom, Lazy load, Alt & More” (ultimateimagetool) in versions up to 2.1.02 from Advanced Plugins for PrestaShop, a guest can download personal informations without restriction by performing a path traversal attack.
Advancedplugins Ultimateimagetool
7.8
CVSSv3
CVE-2023-36536
Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.
Zoom Rooms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »