86 matches found
Code injection
All versions of the Zoom Plugin for Microsoft Outlook for MacOS before 5.3.52553.0918 contain a Time-of-check Time-of-use TOC/TOU vulnerability during the plugin installation process. This could allow a standard user to write their own malicious application to the plugin directory, allowing the...
CVE-2021-34410
A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root...
CVE-2021-34410
CVE-2021-34410 affects the Zoom Plugin for Microsoft Outlook for Mac (all versions prior to 5.0.25611.0521). The issue arises from a user-writable application bundle unpacked during installation, enabling local privilege escalation to root. The Connected documents confirm the product/component an...
ZOOM Plugin 安全漏洞
Zoom Plugin is a plug-in from Zoom ZOOM, Inc. A security vulnerability exists in previous versions of Zoom Plugin for Microsoft Outlook for MacOS 5.3.52553.0918, which stems from a Time of Check Use TOC TOU vulnerability included in the plug-in installation process. An attacker could exploit this...
Microsoft Outlook 输入验证错误漏洞
Microsoft Outlook is a set of email applications from Microsoft Corporation USA. Microsoft Outlook is vulnerable to an input validation error that originates from a failure to properly validate the validity of the package during the product's Zoom Plugin installation. An attacker could cause an...
WordPress 路径遍历漏洞
WordPress is the WordPress Foundation's suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin WP Image Zoom has a file inclusion vulnerability in versions prior to 1.47. The vulnerability stems...