Rooms Security Vulnerabilities and Issues — Page 2 of Rooms CVE List

Lucene search

ZoomRooms

81 matches found

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-42438

Buffer overflow in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.5AI score0.00284EPSS

CVE•added 2024/08/14 5:15 p.m.•43 views

CVE-2024-42440

Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS and Zoom Rooms Client for macOS before 6.1.5 may allow a privileged user to conduct an escalation of privilege via local access.

6.7CVSS6.4AI score0.00031EPSS

CVE•added 2024/11/19 8:15 p.m.•43 views

CVE-2024-45419

Improper input validation in some Zoom Apps may allow an unauthenticated user to conduct a disclosure of information via network access.

8.1CVSS7.9AI score0.0013EPSS

CVE•added 2025/02/25 8:15 p.m.•43 views

CVE-2024-45425

Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access.

6.5CVSS4.8AI score0.00046EPSS

CVE•added 2024/07/15 6:15 p.m.•42 views

CVE-2024-27241

Improper input validation in some Zoom Apps and SDKs may allow an authenticated user to conduct a denial of service via network access.

7.5CVSS5.2AI score0.00065EPSS

CVE•added 2025/04/08 5:15 p.m.•42 views

CVE-2025-30670

Null pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS7AI score0.00142EPSS

CVE•added 2025/04/08 5:15 p.m.•42 views

CVE-2025-30671

Null pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS7AI score0.00142EPSS

CVE•added 2024/08/14 5:15 p.m.•41 views

CVE-2024-42441

6.7CVSS6.4AI score0.00031EPSS

CVE•added 2025/01/30 8:15 p.m.•41 views

CVE-2025-0146

Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an authenticated user to conduct a denial of service via local access.

5CVSS4AI score0.00026EPSS

CVE•added 2023/11/14 11:15 p.m.•40 views

CVE-2023-39206

Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.

7.5CVSS8AI score0.00312EPSS

CVE•added 2024/07/15 6:15 p.m.•40 views

CVE-2024-27240

Improper input validation in the installer for some Zoom Apps for Windows may allow an authenticated user to conduct a privilege escalation via local access.

7.8CVSS7AI score0.00132EPSS

CVE•added 2025/04/08 5:15 p.m.•40 views

CVE-2025-27443

Insecure default variable initialization in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a loss of integrity via local access.

5.5CVSS6.8AI score0.00022EPSS

CVE•added 2022/08/17 10:15 p.m.•39 views

CVE-2022-28752

Zoom Rooms for Conference Rooms for Windows versions before 5.11.0 are susceptible to a Local Privilege Escalation vulnerability. A local low-privileged malicious user could exploit this vulnerability to escalate their privileges to the SYSTEM user.

8.8CVSS7.9AI score0.00153EPSS

CVE•added 2023/07/11 6:15 p.m.•39 views

CVE-2023-36538

Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.

8.4CVSS8AI score0.0004EPSS

CVE•added 2023/11/14 11:15 p.m.•38 views

CVE-2023-39204

Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.

7.5CVSS7.5AI score0.00273EPSS

CVE•added 2023/11/15 12:15 a.m.•38 views

CVE-2023-43591

Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access.

7.8CVSS7.7AI score0.00081EPSS

CVE•added 2024/07/15 6:15 p.m.•38 views

CVE-2024-39819

Improper privilege management in the installer for some Zoom Workplace Apps and SDKs for Windows may allow an authenticated user to conduct a privilege escalation via local access.

7.3CVSS6.6AI score0.00112EPSS

CVE•added 2023/11/14 11:15 p.m.•37 views

CVE-2023-39202

Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.

5.5CVSS5.3AI score0.00027EPSS

CVE•added 2025/05/14 6:15 p.m.•36 views

CVE-2025-30666

NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.4AI score0.00062EPSS

CVE•added 2023/08/08 6:15 p.m.•35 views

CVE-2023-36532

Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.

7.5CVSS7.5AI score0.00683EPSS

CVE•added 2024/11/19 8:15 p.m.•34 views

CVE-2024-45422

Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated user to conduct a denial of service via network access.

7.5CVSS6.5AI score0.00087EPSS

CVE•added 2024/11/19 8:15 p.m.•33 views

CVE-2024-45420

Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS4.5AI score0.00088EPSS

CVE•added 2023/07/11 6:15 p.m.•32 views

CVE-2023-34119

Insecure temporary file in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.

8.2CVSS8AI score0.00049EPSS

CVE•added 2023/08/08 6:15 p.m.•32 views

CVE-2023-39218

Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access.

6.1CVSS5.3AI score0.00249EPSS

CVE•added 2023/07/11 6:15 p.m.•31 views

CVE-2023-34118

Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.00035EPSS

CVE•added 2023/11/14 11:15 p.m.•31 views

CVE-2023-39199

Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.

6.5CVSS6.9AI score0.00099EPSS

CVE•added 2023/08/08 10:15 p.m.•31 views

CVE-2023-39212

Untrusted search path in Zoom Rooms for Windows before version 5.15.5 may allow an authenticated user to enable a denial of service via local access.

7.9CVSS5.3AI score0.00039EPSS

CVE•added 2025/05/14 6:15 p.m.•31 views

CVE-2025-30665

NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.

6.5CVSS6.8AI score0.00062EPSS

CVE•added 2023/08/08 10:15 p.m.•30 views

CVE-2023-39214

Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated user to enable a denial of service via network access.

8.1CVSS7.5AI score0.00423EPSS

CVE•added 2023/07/11 6:15 p.m.•28 views

CVE-2023-36536

Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.

8.2CVSS7.7AI score0.00055EPSS

CVE•added 2023/07/11 6:15 p.m.•27 views

CVE-2023-36537

Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.0003EPSS

Total number of security vulnerabilities81