Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2022/12/15 12:0 a.m.34 views

Zoom Client for Meetings < 5.10.0 Vulnerability (ZSB-22009)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.10.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-22009 advisory. - The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.10.0 fails to properly valida...

7.5CVSS7.7AI score0.03803EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/01 12:0 a.m.145 views

Zoom Client < 5.10.0 Attack Chain Vulnerabilities

The version of Zoom Client for Meetings for Windows installed on the remote host is prior to 5.10.0. It is, therefore, affected by multiple vulnerabilities. - The Zoom Client for Meetings for Android, iOS, Linux, MacOS, and Windows before version 5.10.0 failed to properly parse XML stanzas in XMP...

9.1CVSS8.3AI score0.04033EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2022/05/25 1:2 p.m.82 views

Zoom Patches ‘Zero-Click’ RCE Bug

Zoom patched a medium-severity flaw, advising Windows, macOS, iOS and Android users to update their client software to version 5.10.0. The Google Project Zero security researcher Ivan Fratric noted in a report that an attacker can exploit a victim’s machine over a zoom chat. The bug, tracked as...

9.1CVSS6.7AI score0.04033EPSS
Exploits0References6
The Hacker News
The Hacker News
added 2022/05/25 4:59 a.m.86 views

New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message

Popular video conferencing service Zoom has resolved as many as four security vulnerabilities, which could be exploited to compromise another user over chat by sending specially crafted Extensible Messaging and Presence Protocol XMPP messages and execute malicious code. Tracked from CVE-2022-2278...

9.1CVSS1.5AI score0.04033EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.21 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22009) - Mac OS X

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.6AI score0.04033EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.21 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22009) - Linux

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.6AI score0.04033EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.24 views

Zoom Client < 5.10.0 Multiple Vulnerabilities (ZSB-22006, ZSB-22007, ZSB-22008, ZSB-22009) - Windows

The Zoom Client is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS8.4AI score0.04033EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/18 4:3 p.m.33 views

CVE-2022-22787 Insufficient hostname validation during Clusterswitch message in Zoom Client for Meetings

The Zoom Client for Meetings for Android, iOS, Linux, macOS, and Windows before version 5.10.0 fails to properly validate the hostname during a server switch request. This issue could be used in a more sophisticated attack to trick an unsuspecting users client to connect to a malicious server whe...

5.9CVSS8.5AI score0.03803EPSS
Exploits0References2
CVE
CVE
added 2022/05/18 4:3 p.m.138 views

CVE-2022-22787

CVE-2022-22787 affects the Zoom Client for Meetings on Android, iOS, Linux, macOS and Windows, prior to version 5.10.0. The root cause is improper hostname validation during a server switch request, which could allow a malicious server to impersonate a legitimate Zoom server and lure the client d...

7.5CVSS6.5AI score0.03803EPSS
Exploits0References2Affected Software1
Kaspersky
Kaspersky
added 2022/05/17 12:0 a.m.37 views

KLA12539 Multiple vulnerabilities in Zoom

Multiple vulnerabilities were found in Zoom. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Insufficient hostname validation vulnerability can be exploited remotely to gain...

9.1CVSS9.4AI score0.04033EPSS
Exploits0References4
Rows per page
Query Builder