Lucene search
K

3230 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/15 12:0 a.m.8 views

Zoom Rooms < 7.0.0 Untrusted Search Path (ZSB-26008)

The version of Zoom Rooms installed on the remote host is prior to 7.0.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-26008 advisory. - Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/14 8:21 p.m.7 views

Cross-site Scripting (XSS)

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Cross-site Scripting XSS through the @html svg rendering path in the SVGPanZoom.svelte common component. An attacker can execute an arbitrary script in the browser by supplying a crafted SVG payload that is...

5.4CVSS5.8AI score0.00165EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.12 views

EUVD-2026-30112

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.12 views

EUVD-2026-30110

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

1.8CVSS5.8AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 9:32 p.m.10 views

EUVD-2026-30111

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 7:17 p.m.10 views

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

7.8CVSS0.00118EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.14 views

CVE-2026-30904

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

4.3CVSS0.00143EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.20 views

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

7.8CVSS0.00118EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 6:3 p.m.32 views

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

7.8CVSS0.00118EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 6:3 p.m.6 views

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

5.8AI score0.00118EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/13 6:3 p.m.10 views

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 6:3 p.m.19 views

CVE-2026-30906

CVE-2026-30906 : Untrusted search path in the installer of Zoom Rooms for Windows, affected up to version 7.0.0, may allow an authenticated user to escalate privileges via local access. The CVSSv3.1 vector is AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H with a base score of 7.8 (HIGH). The issue is tied t...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/13 6:0 p.m.37 views

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

7.8CVSS0.00118EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 6:0 p.m.7 views

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

5.8AI score0.00118EPSS
Exploits0References2
CVE
CVE
added 2026/05/13 6:0 p.m.18 views

CVE-2026-30905

CVE-2026-30905 concerns the Zoom Workplace VDI Plugin Windows Universal Installer. The issue arises from external control of a file name or path in the installer, potentially allowing an authenticated user to escalate privileges through local access on installations prior to version 6.6.11. Affec...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/13 6:0 p.m.11 views

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/13 5:53 p.m.36 views

CVE-2026-30904

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

1.8CVSS0.00143EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 5:53 p.m.16 views

CVE-2026-30904

CVE-2026-30904 concerns Zoom Workplace for iOS prior to version 7.0.0, where a protection mechanism failure could allow an authenticated user with physical access to disclose information. The issue is described consistently across sources as a local, physical-access threat affecting the client, w...

4.3CVSS5.8AI score0.00143EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/13 5:53 p.m.11 views

CVE-2026-30904

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

1.8CVSS5.8AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/13 5:53 p.m.8 views

CVE-2026-30904

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

5.8AI score0.00143EPSS
Exploits0References2
Rows per page
Query Builder