2 matches found
CVE-2022-28749
Affected software: Zoom On-Premise Meeting Connector MMR (versions prior to 4.8.113.20220526). Issue: improper permission checking for attendees in the waiting room, enabling a threat actor to join a meeting without the host’s consent. Impact: unauthorized entry into meetings (no host permission)...
CVE-2022-28749 Insufficient Authorization Check During Meeting Join
Zooms On-Premise Meeting Connector MMR before version 4.8.113.20220526 fails to properly check the permissions of a Zoom meeting attendee. As a result, a threat actor in the Zooms waiting room can join the meeting without the consent of the host...