Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom zoom vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-13450
In the Zoom Client up to and including 4.4.4 and RingCentral 7.0.136380.0312 on macOS, remote attackers can force a user to join a video call with the video camera active. This occurs because any web site can interact with the Zoom web server on localhost port 19421 or 19424. NOT...
Ringcentral Ringcentral 7.0.136380.0312
Zoom Zoom
7.5
CVSSv3
CVE-2021-34413
All versions of the Zoom Plugin for Microsoft Outlook for MacOS prior to 5.3.52553.0918 contain a Time-of-check Time-of-use (TOC/TOU) vulnerability during the plugin installation process. This could allow a standard user to write their own malicious application to the plugin dire...
Zoom Zoom Plugin For Microsoft Outlook
7.8
CVSSv3
CVE-2021-34410
A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac prior to 5.0.25611.0521 allows for privilege escalation to root.
Zoom Zoom Plugin For Microsoft Outlook
5.5
CVSSv3
CVE-2023-39202
Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.
Zoom Virtual Desktop Infrastructure
Zoom Rooms
8.2
CVSSv3
CVE-2022-28758
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
8.6
CVSSv3
CVE-2022-28759
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
6.5
CVSSv3
CVE-2022-28760
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
6.5
CVSSv3
CVE-2022-28761
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting di...
Zoom Zoom On-premise Meeting Connector Mmr
NA
CVE-2007-6533
Buffer overflow in Zoom Player 6.00 beta 2 and previous versions allows user-assisted remote malicious users to execute arbitrary code via an HTTP link to a PLS file in a crafted ZPL file, which causes an overflow in Unicode handling when generating an error message.
Inmatrix Zoom Player 5
Inmatrix Zoom Player 6.00beta2
1 EDB exploit
5.4
CVSSv3
CVE-2022-4578
The Video Conferencing with Zoom WordPress plugin prior to 4.0.10 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which ...
Video Conferencing With Zoom Project Video Conferencing With Zoom
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
malicious code
camera
CVE-2023-46694
CVE-2023-43847
CVE-2023-30311
CVE-2024-27842
CVE-2024-30165
arbitrary code
CVE-2024-21683
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »