7 matches found
Zoom Client for Meetings < 5.10.0 Vulnerability (ZSB-22008)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.10.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-22008 advisory. - The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before...
Zoom Client < 5.10.0 Attack Chain Vulnerabilities
The version of Zoom Client for Meetings for Windows installed on the remote host is prior to 5.10.0. It is, therefore, affected by multiple vulnerabilities. - The Zoom Client for Meetings for Android, iOS, Linux, MacOS, and Windows before version 5.10.0 failed to properly parse XML stanzas in XMP...
New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message
Popular video conferencing service Zoom has resolved as many as four security vulnerabilities, which could be exploited to compromise another user over chat by sending specially crafted Extensible Messaging and Presence Protocol XMPP messages and execute malicious code. Tracked from CVE-2022-2278...
Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22008, ZSB-22009) - Windows
The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-22786
CVE-2022-22786 affects the Zoom Client for Meetings on Windows (and Zoom Rooms on Windows) prior to 5.10.0. The issue is that the updater does not properly check the installed version during updates, enabling a potential downgrade attack to push users to an older, less secure Zoom build. The vuln...
CVE-2022-22786 Update package downgrade in Zoom Client for Meetings for Windows
The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update process. This issue could be used in a more sophisticated attack to trick a user into downgrading...
KLA12539 Multiple vulnerabilities in Zoom
Multiple vulnerabilities were found in Zoom. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Insufficient hostname validation vulnerability can be exploited remotely to gain...