cbcvebase.

Zoom Video Communications Inc Zoom Rooms For Macos vulnerabilities

5 known vulnerabilities affecting zoom_video_communications_inc/zoom_rooms_for_macos.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5

Vulnerabilities

Page 1 of 1
CVE-2022-36926P3HIGHCVSS 7.8≥ unspecified, < 5.11.32023-01-09
CVE-2022-36926 [HIGH] CWE-78 CVE-2022-36926: Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerabilit Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.
nvd
CVE-2022-36927P3HIGHCVSS 7.8≥ unspecified, < 5.11.32023-01-09
CVE-2022-36927 [HIGH] CWE-367 CVE-2022-36927: Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerabilit Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.
nvd
CVE-2023-43591P3HIGHCVSS 7.8vbefore 5.16.02023-11-15
CVE-2023-43591 [HIGH] CWE-280 CVE-2023-43591: Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authentica Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access.
nvd
CVE-2023-43590P3HIGHCVSS 7.8vbefore 5.16.02023-11-15
CVE-2023-43590 [HIGH] CWE-59 CVE-2023-43590: Link following in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to con Link following in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access.
nvd
CVE-2022-36925P3HIGHCVSS 7.8≥ unspecified, < 5.11.42023-01-09
CVE-2022-36925 [HIGH] CWE-321 CVE-2022-36925: Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged application. That key can then be used to interact with the daemon service to ex
nvd
Zoom Video Communications Inc Zoom Rooms For Macos vulnerabilities | cvebase