Lucene search
+L

10 matches found

Malwarebytes
Malwarebytes
added 2023/12/11 10:17 a.m.102 views

Insights into your unpatched vulnerabilities

Every day, nearly 70 brand-new vulnerabilities are discovered in software products around the world. That’s almost 25,550 new problems each year, of which roughly 4,250 or every one-in-six will be classified as “critical.” But with little guidance beyond “critical” classifications—and with the...

10CVSS8.6AI score0.99735EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2022/12/15 12:0 a.m.26 views

Zoom Client for Meetings < 5.10.0 Vulnerability (ZSB-22007)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.10.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-22007 advisory. - The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.10.0 fails to properly...

9.1CVSS8.6AI score0.03707EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/01 12:0 a.m.145 views

Zoom Client < 5.10.0 Attack Chain Vulnerabilities

The version of Zoom Client for Meetings for Windows installed on the remote host is prior to 5.10.0. It is, therefore, affected by multiple vulnerabilities. - The Zoom Client for Meetings for Android, iOS, Linux, MacOS, and Windows before version 5.10.0 failed to properly parse XML stanzas in XMP...

9.1CVSS8.3AI score0.04301EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2022/05/25 4:59 a.m.87 views

New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message

Popular video conferencing service Zoom has resolved as many as four security vulnerabilities, which could be exploited to compromise another user over chat by sending specially crafted Extensible Messaging and Presence Protocol XMPP messages and execute malicious code. Tracked from CVE-2022-2278...

9.1CVSS1.5AI score0.04301EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.21 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22009) - Linux

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.6AI score0.04301EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.24 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22008, ZSB-22009) - Windows

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.4AI score0.04301EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.21 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22009) - Mac OS X

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.6AI score0.04301EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/18 3:42 p.m.32 views

CVE-2022-22785 Improperly constrained session cookies in Zoom Client for Meetings

The Zoom Client for Meetings for Android, iOS, Linux, MacOS, and Windows before version 5.10.0 failed to properly constrain client session cookies to Zoom domains. This issue could be used in a more sophisticated attack to send an unsuspecting users Zoom-scoped session cookies to a non-Zoom domai...

5.9CVSS9.3AI score0.03707EPSS
Exploits0References1
CVE
CVE
added 2022/05/18 3:42 p.m.112 views

CVE-2022-22785

The CVE-2022-22785 entry concerns the Zoom Client for Meetings across Android, iOS, Linux, macOS, and Windows. Before version 5.10.0, it failed to constrain Zoom session cookies to Zoom domains, enabling a more sophisticated attack that could send Zoom-scoped session cookies to a non‑Zoom domain ...

9.1CVSS7.2AI score0.03707EPSS
Exploits0References1Affected Software1
Kaspersky
Kaspersky
added 2022/05/17 12:0 a.m.38 views

KLA12539 Multiple vulnerabilities in Zoom

Multiple vulnerabilities were found in Zoom. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Insufficient hostname validation vulnerability can be exploited remotely to gain...

9.1CVSS9.4AI score0.04301EPSS
Exploits0References4
Rows per page
Query Builder