Zoom Video Communications Inc Zoom Vdi For Windows vulnerabilities
2 known vulnerabilities affecting zoom_video_communications_inc/zoom_vdi_for_windows.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2023-28597P3HIGHCVSS 7.5≥ unspecified, < 5.13.102023-03-27
CVE-2023-28597 [HIGH] CWE-501 CVE-2023-28597: Zoom clients prior to 5.13.5 contain an improper trust boundary implementation vulnerability. If a v
Zoom clients prior to 5.13.5 contain an improper trust boundary implementation vulnerability. If a victim saves a local recording to an SMB location and later opens it using a link from Zoom’s web portal, an attacker positioned on an adjacent network to the victim client could set up a malicious SMB server to respond to client requests, causing the cl
nvd
CVE-2023-22880P3HIGHCVSS 7.5≥ unspecified, < 5.13.12023-03-16
CVE-2023-22880 [HIGH] CWE-200 CVE-2023-22880: Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5
Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. A recent update to the Microsoft Edge WebView2 runtime used by the affected Zoom clients, transmitted text to Microsoft’s online Spellcheck service instead
nvd