15 matches found
EUVD-2021-21067
Malware in sbrugna...
EUVD-2021-21082
Malware in sbrugna...
Zoom Client for Meetings < 5.17.0 Vulnerability (ZSB-24005)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.17.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-24005 advisory. - Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure of information via loc...
Zoom Client for Meetings < 5.17.0 Vulnerability (ZSB-24004)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.17.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-24004 advisory. - Untrusted search path in some Zoom 32 bit Windows clients may allow an authenticated user to conduct an escalation of...
Zoom Client for Meetings < 5.16.5 Vulnerability (ZSB-24007)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.16.5. It is, therefore, affected by a vulnerability as referenced in the ZSB-24007 advisory. - Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via netwo...
Zoom Client for Meetings < 5.14.10 Vulnerability (ZSB-23034)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.14.10. It is, therefore, affected by a vulnerability as referenced in the ZSB-23034 advisory. - Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable...
Zoom Client for Meetings < 5.14.7 Vulnerability (ZSB-23030)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.14.7. It is, therefore, affected by a vulnerability as referenced in the ZSB-23030 advisory. - Path traversal in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalati...
Zoom Client for Meetings < 5.14.7 Vulnerability (ZSB-23032)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.14.7. It is, therefore, affected by a vulnerability as referenced in the ZSB-23032 advisory. - Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable ...
Zoom Client for Meetings < 5.15.5 Vulnerability (ZSB-23041)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.15.5. It is, therefore, affected by a vulnerability as referenced in the ZSB-23041 advisory. - Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an...
CVE-2022-28763
The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks...
Vulnerability fixed in Zoom
A vulnerability has been fixed in Zoom. The vulnerability allows a malicious person to bypass a security measure and gain access to sensitive data. To exploit the vulnerability, a malicious person needs to victim to open a rogue link. This enables the malicious party to perform further attacks su...
The vulnerability of clients for conducting real-time audio and video conferences via Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows allows a hacker to perform spoofing attacks due to improper data analysis of XML messages in XMPP messages.
The vulnerability of clients for conducting real-time audio and video conferences using Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows is related to improper analysis of XML data in XMPP messages. Exploiting this vulnerability allows a malicious actor to perform a spoofing...
CVE-2021-34420
CVE-2021-34420 affects Zoom Client for Meetings on Windows prior to 5.5.4. The root cause is that the Windows installer does not properly verify the signatures of files with .msi, .ps1, and .bat extensions, enabling a malicious actor to install malware on a customer’s computer. Reported in multip...
Vulnerability fixed in Zoom Client for Meetings
A vulnerability has been fixed in Zoom Client for Meetings. The vulnerability allows a remote malicious person to execute arbitrary code. To exploit this vulnerability exploit two other misconfigurations within the Zoom client while the attacker is is connected to the victim. Zoom indicates that...
Zoom Client for Meetings 4.x < 4.1.34814.1119 Message Spoofing Vulnerability
The version of Zoom Client for Meetings installed on the remote Windows host is 4.x prior to 4.1.34814.1119. It is, therefore, affected by a message spoofing vulnerability. An attacker could leverage this vulnerability to perform restricted meeting operations. C Tenable Network Security, Inc...