Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-28764
HistoryNov 14, 2022 - 9:15 p.m.

Information disclosure

2022-11-1421:15:00
PRIOn knowledge base
www.prio-n.com
3
zoom
client
vulnerability
local information exposure
android
ios
linux
macos
windows
version 5.12.6
sql database
per-device key
encrypting
malicious user
meeting information
chat
nvd

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-device key encrypting that database results in a local malicious user being able to obtain meeting information such as in-meeting chat for the previous meeting attended from that local user account.

Related

nessus 2
nvd 1
openvas 1
cve 1
cvelist 1
nessus
nessus
Zoom Client for Meetings < 5.12.6 Vulnerability (ZSB-22025)
2022-12-15 00:00:00
Zoom VDI Meeting Client < 5.13.1 Vulnerability (ZSB-23001)
2023-04-19 00:00:00
nvd
nvd
CVE-2022-28764
2022-11-14 21:15:13
openvas
openvas
Zoom Client < 5.12.6 Information Disclosure Vulnerability (ZSB-22025)
2022-11-14 00:00:00
cve
cve
CVE-2022-28764
2022-11-14 21:15:13
cvelist
cvelist
CVE-2022-28764 Local information exposure in Zoom Clients
2022-11-10 00:00:00

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for PRION:CVE-2022-28764
nessus2nvd1openvas1cve1cvelist1