Lucene search
+L

86 matches found

prion
prion
added 2021/09/27 2:15 p.m.14 views

Code injection

All versions of the Zoom Plugin for Microsoft Outlook for MacOS before 5.3.52553.0918 contain a Time-of-check Time-of-use TOC/TOU vulnerability during the plugin installation process. This could allow a standard user to write their own malicious application to the plugin directory, allowing the...

6CVSS7.4AI score0.00566EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2021/09/27 1:55 p.m.28 views

CVE-2021-34410

A user-writable application bundle unpacked during the install for all versions of the Zoom Plugin for Microsoft Outlook for Mac before 5.0.25611.0521 allows for privilege escalation to root...

8AI score0.00221EPSS
Exploits0References1
cve
cve
added 2021/09/27 1:55 p.m.49 views

CVE-2021-34410

CVE-2021-34410 affects the Zoom Plugin for Microsoft Outlook for Mac (all versions prior to 5.0.25611.0521). The issue arises from a user-writable application bundle unpacked during installation, enabling local privilege escalation to root. The Connected documents confirm the product/component an...

7.8CVSS7.7AI score0.00221EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2021/09/27 12:0 a.m.7 views

ZOOM Plugin 安全漏洞

Zoom Plugin is a plug-in from Zoom ZOOM, Inc. A security vulnerability exists in previous versions of Zoom Plugin for Microsoft Outlook for MacOS 5.3.52553.0918, which stems from a Time of Check Use TOC TOU vulnerability included in the plug-in installation process. An attacker could exploit this...

7.5CVSS7.5AI score0.00566EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/09/27 12:0 a.m.6 views

Microsoft Outlook 输入验证错误漏洞

Microsoft Outlook is a set of email applications from Microsoft Corporation USA. Microsoft Outlook is vulnerable to an input validation error that originates from a failure to properly validate the validity of the package during the product's Zoom Plugin installation. An attacker could cause an...

7.8CVSS7.5AI score0.00221EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/07/19 12:0 a.m.3 views

WordPress 路径遍历漏洞

WordPress is the WordPress Foundation's suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin WP Image Zoom has a file inclusion vulnerability in versions prior to 1.47. The vulnerability stems...

5.3CVSS5.6AI score0.01375EPSS
Exploits2References2
Rows per page
Query Builder