Lucene search
+L

19 matches found

CVE
CVE
added 2022/05/18 3:42 p.m.164 views

CVE-2022-22786

CVE-2022-22786 affects the Zoom Client for Meetings on Windows (and Zoom Rooms on Windows) prior to 5.10.0. The issue is that the updater does not properly check the installed version during updates, enabling a potential downgrade attack to push users to an older, less secure Zoom build. The vuln...

8.8CVSS8AI score0.01611EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2021/11/24 5:15 p.m.28 views

Design/Logic Flaw

A vulnerability was discovered in the Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.8.4, Zoom Client for Meetings for Blackberry for Android and iOS before version 5.8.1, Zoom Client for Meetings for intune for Android and iOS before version 5.8.4, Zoom...

5CVSS8AI score0.01666EPSS
Exploits0References2Affected Software25
CNVD
CNVD
added 2020/06/19 12:0 a.m.24 views

CAYIN Technology xPost SQL Injection Vulnerability

CAYIN Technology xPost is a digital signage system for conference room management from CAYIN Technology in Taiwan, China. A SQL injection vulnerability exists in CAYIN Technology xPost 2.5 and prior versions. The vulnerability stems from a database-based application that lacks validation of...

10CVSS7.7AI score0.14014EPSS
Exploits5References1
CNVD
CNVD
added 2020/04/17 12:0 a.m.2 views

File Upload Vulnerability in Rmeeting Room Management System

Rmeeting Conference Room Management System is a system that provides meeting booking services for corporate meeting rooms, large conference centers, and hotel conference centers. A file upload vulnerability exists in the Rmeeting Conference Room Management System, which can be exploited by an...

7.2AI score
Exploits0
Talos
Talos
added 2020/03/05 12:0 a.m.39 views

Zoom conference room connector service insufficient session invalidation

Summary Zoom Conference Room Connector services perform insufficient session invalidation upon certain user administration tasks which enable a demoted or deleted user to still access the room administration interface. If a user has administrative access to the connected device and if this access...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/08/30 12:0 a.m.4 views

IBM Sametime Information Disclosure Vulnerability (CNVD-2017-30590)

IBM Sametime is a suite of next-generation social communication tools from IBM in the United States. The tool helps users realize real-time business collaboration by integrating audio voice, data and video. A security vulnerability exists in IBM Sametime versions 8.5.1 and 9.0. An attacker can...

4.3CVSS4.8AI score0.01234EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/31 12:0 a.m.4 views

Webservice-DIC yoyaku_v41 Unauthorized Operation Vulnerability

Webservice-DIC yoyakuv41 is a conference room reservation management software from Webservice-DIC. Webservice-DIC yoyakuv41 fails to properly filter user-submitted input, which allows remote attackers to bypass authentication by submitting a special request to complete a conference room reservati...

5CVSS7.2AI score0.01277EPSS
Exploits0References1
NVD
NVD
added 2015/07/29 2:59 p.m.17 views

CVE-2015-2978

Webservice-DIC yoyakuv41 allows remote attackers to bypass authentication and complete a conference-room reservation via unspecified vectors, as demonstrated by an "unintentional reservation."...

5CVSS7AI score0.01277EPSS
Exploits0References2
Prion
Prion
added 2015/07/29 2:59 p.m.9 views

Authentication flaw

Webservice-DIC yoyakuv41 allows remote attackers to bypass authentication and complete a conference-room reservation via unspecified vectors, as demonstrated by an "unintentional reservation."...

5CVSS7.5AI score0.01277EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/07/29 2:0 p.m.23 views

CVE-2015-2978

Webservice-DIC yoyakuv41 allows remote attackers to bypass authentication and complete a conference-room reservation via unspecified vectors, as demonstrated by an "unintentional reservation."...

7AI score0.01277EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/07/29 12:0 a.m.26 views

JVN#17522792: yoyaku_v41 vulnerable to OS command injection

yoyakuv41 provided by Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains an OS command injection vulnerability CWE-78. Impact An arbitrary OS command may be executed with the privileges of the web server on the server where yoyakuv41 is running. Solution Do no...

7.5CVSS7.2AI score0.01383EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/05/04 12:0 a.m.10 views

Yahoo Messenger AudioConf ActiveX Control Buffer Overflow (CVE-2007-1680)

Yahoo! Messenger is an instant messaging communicating application developed by Yahoo! Inc. One of the features that Yahoo! Messenger provides is the ability to create conference rooms. Yahoo! Messenger users can create a conference room and invite other users to join the conference. The conferen...

9.3CVSS7.6AI score0.08375EPSS
Exploits4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/09/11 12:0 a.m.12 views

JVN#05857667 Webservice-DIC yoyaku_v41 vulnerable to command injection

yoyakuv41 from Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains a command injection vulnerability. This vulnerability is different from JVN80436657. Impact An arbitrary command could be executed with the privilege of the server where yoyakuv41 runs. Solution...

7.6AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/07/31 12:0 a.m.19 views

JVN#80436657 Webservice-DIC yoyaku_v41 vulnerable to command injection

yoyakuv41 from Webservice-DIC is a software to manage conference room reservations. yoyakuv41 contains a command injection vulnerability. Impact An arbitrary command could be executed with the privilege of the server where yoyakuv41 runs. Solution Update the Software Update to the latest version...

7.6AI score
Exploits0
Prion
Prion
added 2009/06/27 6:48 p.m.9 views

Cross site scripting

Cross-site scripting XSS vulnerability in AD2000 free-sw leger aka Web Conference Room Free 1.6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01065EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2009/06/27 6:0 p.m.44 views

CVE-2009-2240

The CVE-2009-2240 issue affects leger (free edition) from AD2000 (Web Conference Room Free). A cross-site scripting (XSS) vulnerability exists in version 1.6.4 and earlier, allowing an attacker to cause arbitrary script execution in a user’s browser. The vendor addressed this with an update in ve...

4.3CVSS5.8AI score0.01065EPSS
Exploits0References5Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/05/22 12:0 a.m.36 views

JVN#57036470 Cross-site scripting vulnerability in leger (free edition)

leger free edition from 'AD2000' is a software to manage conference room reservations. leger free edition contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to the...

4.3CVSS5.9AI score0.01065EPSS
Exploits0
securityvulns
securityvulns
added 2001/01/11 12:0 a.m.26 views

Vulnerable: Conference Room Professional-Developer Edititon.

Vulnerable: Conference Room Professional-Developer Edititon. www.webmaster.com Only tested on Windows NT 4.0 sp6a and Windows 2000 pro. Conference Room 1.8.1x or older versions are subject to a DoS attack when following commands are used. Make to connections to the irc server second being the clo...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2001/01/11 12:0 a.m.41 views

DoS против Conference Room

Определенная последовательность команд приводит к краху IRC-сервера...

0.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder