Vulnerability in Zoom Meetings
CVE-2022-22782
The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft Outlook for Windows prior to version 5.10.3, and Zoom VDI Windows Meeting Clien…
EPSS: 0.004 (28.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.9 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H.
Affected products
- Zoom Meetings
- Zoom Rooms_for_conference_rooms
- Zoom Vdi_windows_meeting_clients
- Zoom Zoom_plugin_for_microsoft_outlook
- Zoom Video Communications Inc Client For Meetings Windows — versions unspecified
- Zoom Video Communications Inc Plugins For Microsoft Outlook Windows — versions unspecified
- Zoom Video Communications Inc Rooms For Conference Room Windows — versions unspecified
- Zoom Video Communications Inc Vdi Windows Meeting Clients — versions unspecified
References
- security@zoom.us (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2022-22782?
- CVE-2022-22782 is a high-severity vulnerability in Zoom Meetings. CVSS score: 7.9/10. Published 2022-04-28.
- How severe is CVE-2022-22782?
- High severity. CVSS v3 base score is 7.9 out of 10.