Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-13450
In the Zoom Client up to and including 4.4.4 and RingCentral 7.0.136380.0312 on macOS, remote attackers can force a user to join a video call with the video camera active. This occurs because any web site can interact with the Zoom web server on localhost port 19421 or 19424. NOT...
Ringcentral Ringcentral 7.0.136380.0312
Zoom Zoom
5.5
CVSSv3
CVE-2023-39202
Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.
Zoom Virtual Desktop Infrastructure
Zoom Rooms
7.8
CVSSv3
CVE-2021-34410
A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac prior to 5.0.25611.0521 allows for privilege escalation to root.
Zoom Zoom Plugin For Microsoft Outlook
7.5
CVSSv3
CVE-2021-34413
All versions of the Zoom Plugin for Microsoft Outlook for MacOS prior to 5.3.52553.0918 contain a Time-of-check Time-of-use (TOC/TOU) vulnerability during the plugin installation process. This could allow a standard user to write their own malicious application to the plugin dire...
Zoom Zoom Plugin For Microsoft Outlook
8.2
CVSSv3
CVE-2022-28758
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
8.6
CVSSv3
CVE-2022-28759
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
6.5
CVSSv3
CVE-2022-28760
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.
Zoom Zoom On-premise Meeting Connector Mmr
6.5
CVSSv3
CVE-2022-28761
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting di...
Zoom Zoom On-premise Meeting Connector Mmr
NA
CVE-2007-6533
Buffer overflow in Zoom Player 6.00 beta 2 and previous versions allows user-assisted remote malicious users to execute arbitrary code via an HTTP link to a PLS file in a crafted ZPL file, which causes an overflow in Unicode handling when generating an error message.
Inmatrix Zoom Player 5
Inmatrix Zoom Player 6.00beta2
1 EDB exploit
5.4
CVSSv3
CVE-2022-4578
The Video Conferencing with Zoom WordPress plugin prior to 4.0.10 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which ...
Video Conferencing With Zoom Project Video Conferencing With Zoom
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »