cbcvebase.

Zoom Video Communications Inc Zoom Vdi Windows Meeting Clients vulnerabilities

4 known vulnerabilities affecting zoom_video_communications_inc/zoom_vdi_windows_meeting_clients.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1LOW1

Vulnerabilities

Page 1 of 1
CVE-2022-28763P3CRITICALCVSS 9.6≥ unspecified, < 5.12.22022-10-31
CVE-2022-28763 [CRITICAL] CWE-20 CVE-2022-28763: The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers.
nvd
CVE-2022-28755P4MEDIUMCVSS 6.1≥ unspecified, < 5.10.72022-08-11
CVE-2022-28755 [MEDIUM] CWE-20 CVE-2022-28755: The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.11.0 are The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.11.0 are susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including the potential for remote code execution t
nvd
CVE-2022-22782P4HIGHCVSS 7.1≥ unspecified, < 5.9.62022-04-28
CVE-2022-22782 [HIGH] CVE-2022-22782: The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft Outlook for Windows prior to version 5.10.3, and Zoom VDI Windows Meeting Clients prior to version 5.9.6; was susceptible to a local privilege escalation issue during the installer repair operation. A m
nvd
CVE-2022-28764P4LOWCVSS 3.3≥ unspecified, < 5.12.62022-11-14
CVE-2022-28764 [LOW] CWE-200 CVE-2022-28764: The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-device key encrypting that database results in a local malicious user being abl
nvd
Zoom Video Communications Inc Zoom Vdi Windows Meeting Clients vulnerabilities | cvebase