Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom zoom vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-39217
Improper input validation in Zoom SDK’s prior to 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.
Zoom Meeting Software Development Kit
Zoom Video Software Development Kit
7.5
CVSSv3
CVE-2023-36533
Uncontrolled resource consumption in Zoom SDKs prior to 5.14.7 may allow an unauthenticated user to enable a denial of service via network access.
Zoom Video Software Development Kit
Zoom Meeting Software Development Kit
7.8
CVSSv3
CVE-2022-36924
The Zoom Rooms Installer for Windows before 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate their privileges to the SYSTEM user.
Zoom Rooms
7.8
CVSSv3
CVE-2022-36925
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged applica...
Zoom Rooms
7.8
CVSSv3
CVE-2022-36927
Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.
Zoom Rooms
7.8
CVSSv3
CVE-2022-36929
The Zoom Rooms Installer for Windows before 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability during the install process to escalate their privileges to the SYSTEM user.
Zoom Rooms
7.8
CVSSv3
CVE-2022-36930
Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain to escalate their privileges to the SYSTEM user.
Zoom Rooms
9.1
CVSSv3
CVE-2022-22785
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly constrain client session cookies to Zoom domains. This issue could be used in a more sophisticated attack to send an unsuspecting users Zoom-scoped session cookies ...
Zoom Meetings
7.1
CVSSv3
CVE-2023-28603
Zoom VDI client installer before 5.14.0 contains an improper access control vulnerability. A malicious user may potentially delete local files without proper permissions.
Zoom Virtual Desktop Infrastructure
7.8
CVSSv3
CVE-2021-34408
The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the installation or update of the client. This could allow for potential privilege escalation if a link was created between the ...
Zoom Meetings
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »