Meeting Software Development Kit@* Security Vulnerabilities and Issues — Meeting Software Development Kit@* CVE List

Lucene search

ZoomMeeting Software Development Kit*

33 matches found

CVE•added 2024/02/14 12:15 a.m.•130 views

CVE-2024-24691

Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via network access.

9.8CVSS9.7AI score0.00467EPSS

CVE•added 2023/12/13 11:15 p.m.•84 views

CVE-2023-43586

Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows may allow an authenticated user to conduct an escalation of privilege via network access.

8.8CVSS8.8AI score0.00073EPSS

CVE•added 2025/02/25 8:15 p.m.•65 views

CVE-2024-45421

Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of privilege via network access.

8.8CVSS8.8AI score0.00054EPSS

CVE•added 2024/02/14 12:15 a.m.•64 views

CVE-2024-24690

Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS5.5AI score0.00075EPSS

CVE•added 2025/02/25 8:15 p.m.•60 views

CVE-2024-45417

Uncontrolled resource consumption in the installer for some Zoom apps for macOS before version 6.1.5 may allow a privileged user to conduct a disclosure of information via local access.

6CVSS6.4AI score0.00013EPSS

CVE•added 2024/01/12 10:15 p.m.•58 views

CVE-2023-49647

Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows before version 5.16.10 may allow an authenticated user to conduct an escalation of privilege via local access.

8.8CVSS7.7AI score0.00037EPSS

CVE•added 2024/08/14 5:15 p.m.•55 views

CVE-2024-39822

Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access.

6.5CVSS6.2AI score0.00224EPSS

CVE•added 2025/02/25 8:15 p.m.•52 views

CVE-2024-45418

Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an authenticated user to conduct an escalation of privilege via network access.

8.8CVSS5.7AI score0.00036EPSS

CVE•added 2024/02/14 12:15 a.m.•50 views

CVE-2024-24698

Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure of information via local access.

4.9CVSS4.8AI score0.00112EPSS

CVE•added 2024/08/14 5:15 p.m.•50 views

CVE-2024-42434

Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.

4.9CVSS4.9AI score0.00168EPSS

CVE•added 2024/08/14 5:15 p.m.•49 views

CVE-2024-42435

Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.

4.9CVSS4.9AI score0.00168EPSS

CVE•added 2024/08/14 5:15 p.m.•49 views

CVE-2024-42436

Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.5AI score0.00284EPSS

CVE•added 2025/02/25 8:15 p.m.•49 views

CVE-2024-45426

Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access.

6.5CVSS4.9AI score0.00035EPSS

CVE•added 2025/02/25 8:15 p.m.•48 views

CVE-2024-45424

Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access.

7.5CVSS5.1AI score0.00061EPSS

CVE•added 2023/09/12 8:15 p.m.•47 views

CVE-2023-39215

Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.

7.1CVSS6.8AI score0.00375EPSS

CVE•added 2023/12/13 11:15 p.m.•47 views

CVE-2023-49646

Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.5AI score0.00022EPSS

CVE•added 2024/02/14 12:15 a.m.•47 views

CVE-2024-24697

Untrusted search path in some Zoom 32 bit Windows clients may allow an authenticated user to conduct an escalation of privilege via local access.

7.8CVSS7AI score0.00052EPSS

CVE•added 2024/08/14 5:15 p.m.•46 views

CVE-2024-39824

Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.

4.9CVSS4.9AI score0.00182EPSS

CVE•added 2023/12/13 11:15 p.m.•43 views

CVE-2023-43583

Cryptographic issues Zoom Mobile App for Android, Zoom Mobile App for iOS, and Zoom SDKs for Android and iOS before version 5.16.0 may allow a privileged user to conduct a disclosure of information via network access.

4.9CVSS4.7AI score0.00118EPSS

CVE•added 2024/02/14 12:15 a.m.•43 views

CVE-2024-24695

Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via network access.

6.8CVSS6.3AI score0.00206EPSS

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-39823

Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.

4.9CVSS4.9AI score0.00182EPSS

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-42437

Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.5AI score0.00248EPSS

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-42438

Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.5AI score0.00284EPSS

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-42440

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS and Zoom Rooms Client for macOS before 6.1.5 may allow a privileged user to conduct an escalation of privilege via local access.

6.7CVSS6.4AI score0.00031EPSS

CVE•added 2025/02/25 8:15 p.m.•43 views

CVE-2024-45425

Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access.

6.5CVSS4.8AI score0.00035EPSS

CVE•added 2024/08/14 5:15 p.m.•41 views

CVE-2024-42441

6.7CVSS6.4AI score0.00031EPSS

CVE•added 2024/02/14 12:15 a.m.•40 views

CVE-2024-24696

6.8CVSS6.3AI score0.0019EPSS

CVE•added 2024/08/14 5:15 p.m.•39 views

CVE-2024-42439

Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting SDK for macOS before 6.1.0 may allow a privileged user to conduct an escalation of privilege via local access.

6.5CVSS6.6AI score0.00028EPSS

CVE•added 2023/08/08 10:15 p.m.•33 views

CVE-2023-39210

Cleartext storage of sensitive information in Zoom Client SDK for Windows before 5.15.0 may allow an authenticated user to enable an information disclosure via local access.

5.5CVSS5.1AI score0.00034EPSS

CVE•added 2023/12/13 11:15 p.m.•31 views

CVE-2023-43585

Improper access control in Zoom Mobile App for iOS and Zoom SDKs for iOS before version 5.16.5 may allow an authenticated user to conduct a disclosure of information via network access.

7.1CVSS6AI score0.00129EPSS

CVE•added 2023/08/08 10:15 p.m.•30 views

CVE-2023-39214

Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated user to enable a denial of service via network access.

8.1CVSS7.5AI score0.00423EPSS

CVE•added 2023/08/08 6:15 p.m.•29 views

CVE-2023-39217

Improper input validation in Zoom SDK’s before 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.

7.5CVSS7.4AI score0.00167EPSS

CVE•added 2023/08/08 6:15 p.m.•22 views

CVE-2023-36533

Uncontrolled resource consumption in Zoom SDKs before 5.14.7 may allow an unauthenticated user to enable a denial of service via network access.

7.5CVSS7.4AI score0.00424EPSS