Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zoom vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-22881
Zoom clients before version 5.13.5 contain a STUN parsing vulnerability. A malicious actor could send specially crafted UDP traffic to a victim Zoom client to remotely cause the client to crash, causing a denial of service.
Zoom Zoom
7.1
CVSSv3
CVE-2022-36928
Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability. A third party app could exploit this vulnerability to read and write to the Zoom application data directory.
Zoom Zoom
9.8
CVSSv3
CVE-2023-36534
Path traversal in Zoom Desktop Client for Windows prior to 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
Zoom Zoom
8.8
CVSSv3
CVE-2019-13567
The Zoom Client prior to 4.4.53932.0709 on macOS allows remote code execution, a different vulnerability than CVE-2019-13450. If the ZoomOpener daemon (aka the hidden web server) is running, but the Zoom Client is not installed or can't be opened, an attacker can remotely ex...
Zoom Zoom
8.8
CVSSv3
CVE-2023-34113
Insufficient verification of data authenticity in Zoom for Windows clients prior to 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access.
Zoom Zoom
6.5
CVSSv3
CVE-2023-34114
Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients prior to 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access.
Zoom Zoom
8.8
CVSSv3
CVE-2023-34116
Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network access.
Zoom Zoom
7.8
CVSSv3
CVE-2023-34122
Improper input validation in the installer for Zoom for Windows clients prior to 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access.
Zoom Zoom
6.5
CVSSv3
CVE-2019-13449
In the Zoom Client prior to 4.4.2 on macOS, remote attackers can cause a denial of service (continual focus grabs) via a sequence of invalid launch?action=join&confno= requests to localhost port 19421.
Zoom Zoom
9.8
CVSSv3
CVE-2018-15715
Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116), and Linux (2.4.129780.0915 and below) are vulnerable to unauthorized message processing. A remote unauthenticated attacker can spoof UDP messages from a meeting attendee or Zoom serve...
Zoom Zoom
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »