Zoom Meetings
37 CVEs affecting Zoom Meetings. Latest disclosed: 2023-11-15. Critical: 2, High: 21.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-34423 | Critical | 9.8 | 2021-11-24 | A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for… |
CVE-2021-33907 | Critical | 9.8 | 2021-09-27 | The Zoom Client for Meetings for Windows in all versions before 5.3.0 fails to properly validate the certificate information used to sign .msi files when perfo… |
CVE-2022-28768 | High | 8.8 | 2022-11-17 | The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a local privilege escalation vulnerability. A local… |
CVE-2022-28763 | High | 8.8 | 2022-10-31 | The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious… |
CVE-2022-28757 | High | 8.8 | 2022-08-18 | The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.6 contains a vulnerability in the auto update pr… |
CVE-2022-28751 | High | 8.8 | 2022-08-17 | The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains a vulnerability in the package signature validation during th… |
CVE-2022-28756 | High | 8.8 | 2022-08-15 | The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.5 contains a vulnerability in the auto update pr… |
CVE-2022-22784 | High | 8.1 | 2022-05-18 | The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly parse XML stanzas in XMPP messages. This ca… |
CVE-2022-22782 | High | 7.9 | 2022-04-28 | The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft… |
CVE-2023-28596 | High | 7.8 | 2023-03-27 | Zoom Client for IT Admin macOS installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit t… |
CVE-2021-34412 | High | 7.8 | 2021-09-27 | During the installation process for all versions of the Zoom Client for Meetings for Windows before 5.4.0, it is possible to launch Internet Explorer. If the i… |
CVE-2021-34409 | High | 7.8 | 2021-09-27 | It was discovered that the installation packages of the Zoom Client for Meetings for MacOS (Standard and for IT Admin) installation before version 5.2.0, Zoom… |
CVE-2021-34408 | High | 7.8 | 2021-09-27 | The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the ins… |
CVE-2020-11469 | High | 7.8 | 2020-04-01 | Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (wi… |
CVE-2022-22786 | High | 7.5 | 2022-05-18 | The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check th… |
CVE-2022-22781 | High | 7.5 | 2022-04-28 | The Zoom Client for Meetings for MacOS (Standard and for IT Admin) prior to version 5.9.6 failed to properly check the package version during the update proces… |
CVE-2021-34424 | High | 7.5 | 2021-11-24 | A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for… |
CVE-2020-11877 | High | 7.5 | 2020-04-17 | airhost.exe in Zoom Client for Meetings 4.6.11 uses 3423423432325249 as the Initialization Vector (IV) for AES-256 CBC encryption. NOTE: the vendor states that… |
CVE-2020-11876 | High | 7.5 | 2020-04-17 | airhost.exe in Zoom Client for Meetings 4.6.11 uses the SHA-256 hash of 0123425234234fsdfsdr3242 for initialization of an OpenSSL EVP AES-256 CBC context. NOTE… |
CVE-2020-11500 | High | 7.5 | 2020-04-03 | Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key. |