cbcvebase.
CVE-2026-22844
published 2026-01-20

CVE-2026-22844: A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before version 5.2.1716.0 may allow a meeting participant to conduct remote code…

PriorityP179critical9.9CVSS 3.1
AVNACLPRLUINSCCHIHAH
EPSS
12.96%
95.8th percentile
A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before version 5.2.1716.0 may allow a meeting participant to conduct remote code execution of the MMR via network access.

Affected

1 ranges
VendorProductVersion rangeFixed in
zoom_communications_inczoom_node< 5.2.1716.05.2.1716.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.