cbcvebase.

Zoom Meeting Software Development Kit vulnerabilities

84 known vulnerabilities affecting zoom/meeting_software_development_kit.

Total CVEs
84
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH27MEDIUM53

Vulnerabilities

Page 3 of 5
CVE-2024-27246P4MEDIUMCVSS 6.5fixed in 5.17.112025-02-25
CVE-2024-27246 [MEDIUM] CWE-416 CVE-2024-27246: Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a den Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-27239P4MEDIUMCVSS 6.5fixed in 5.17.112025-02-25
CVE-2024-27239 [MEDIUM] CWE-416 CVE-2024-27239: Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a den Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-39826P4MEDIUMCVSS 6.8fixed in 6.0.02024-07-15
CVE-2024-39826 [MEDIUM] CWE-367 CVE-2024-39826: Race condition in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an authentic Race condition in Team Chat for some Zoom Workplace Apps and SDKs for Windows may allow an authenticated user to conduct information disclosure via network access.
nvd
CVE-2023-39215P4MEDIUMCVSS 6.5fixed in 5.15.52023-09-12
CVE-2023-39215 [MEDIUM] CWE-449 CVE-2023-39215: Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of servi Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-27245P4MEDIUMCVSS 6.5fixed in 5.17.112025-02-25
CVE-2024-27245 [MEDIUM] CWE-122 CVE-2024-27245: Buffer overflow in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a de Buffer overflow in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-42437P4MEDIUMCVSS 6.5fixed in 6.1.02024-08-14
CVE-2024-42437 [MEDIUM] CWE-122 CVE-2024-42437: Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-42436P4MEDIUMCVSS 6.5fixed in 6.1.02024-08-14
CVE-2024-42436 [MEDIUM] CWE-122 CVE-2024-42436: Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-42438P4MEDIUMCVSS 6.5fixed in 6.1.02024-08-14
CVE-2024-42438 [MEDIUM] CWE-122 CVE-2024-42438: Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-46785P4MEDIUMCVSS 6.5fixed in 6.4.02025-05-14
CVE-2025-46785 [MEDIUM] CWE-120 CVE-2025-46785: Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-0150P4MEDIUMCVSS 6.5fixed in 6.3.02025-03-11
CVE-2025-0150 [MEDIUM] CWE-696 CVE-2025-0150: Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authe Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2024-45420P4MEDIUMCVSS 6.5fixed in 6.2.02024-11-19
CVE-2024-45420 [MEDIUM] CWE-400 CVE-2024-45420: Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an authenticated Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-49458P4MEDIUMCVSS 6.5fixed in 6.5.02025-09-09
CVE-2025-49458 [MEDIUM] CWE-120 CVE-2025-49458: Buffer overflow in certain Zoom Workplace Clients may allow an authenticated user to conduct a denia Buffer overflow in certain Zoom Workplace Clients may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-30663P4HIGHCVSS 7.0fixed in 6.4.02025-05-14
CVE-2025-30663 [HIGH] CWE-367 CVE-2025-30663: Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access.
nvd
CVE-2025-30668P4MEDIUMCVSS 6.5fixed in 6.4.02025-05-14
CVE-2025-30668 [MEDIUM] CWE-191 CVE-2025-30668: Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-0143P4MEDIUMCVSS 6.5fixed in 6.2.52025-01-30
CVE-2025-0143 [MEDIUM] CWE-787 CVE-2025-0143: Out-of-bounds write in the Zoom Workplace App for Linux before version 6.2.5 may allow an unauthoriz Out-of-bounds write in the Zoom Workplace App for Linux before version 6.2.5 may allow an unauthorized user to conduct a denial of service via network access.
nvd
CVE-2024-27243P4MEDIUMCVSS 6.5fixed in 5.17.52024-05-15
CVE-2024-27243 [MEDIUM] CWE-122 CVE-2024-27243: Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a d Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2023-49646P4MEDIUMCVSS 6.5fixed in 5.16.52023-12-13
CVE-2023-49646 [MEDIUM] CWE-347 CVE-2023-49646: Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user t Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-30669P4MEDIUMCVSS 6.5fixed in 6.5.102025-11-13
CVE-2025-30669 [MEDIUM] CWE-295 CVE-2025-30669: Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.
nvd
CVE-2025-30666P4MEDIUMCVSS 6.5fixed in 6.4.02025-05-14
CVE-2025-30666 [MEDIUM] CWE-476 CVE-2025-30666: NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.
nvd
CVE-2025-30667P4MEDIUMCVSS 6.5fixed in 6.4.02025-05-14
CVE-2025-30667 [MEDIUM] CWE-476 CVE-2025-30667: NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.
nvd
Zoom Meeting Software Development Kit vulnerabilities | cvebase