Vulnerabilities > Zoom

DATE CVE VULNERABILITY TITLE RISK
2022-11-17 CVE-2022-28766 Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms
Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability.
local
low complexity
zoom CWE-427
7.3
2022-11-17 CVE-2022-28768 Race Condition vulnerability in Zoom Meetings
The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a local privilege escalation vulnerability.
local
low complexity
zoom CWE-362
7.8
2022-11-17 CVE-2022-36924 Uncontrolled Search Path Element vulnerability in Zoom Rooms
The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability.
local
low complexity
zoom CWE-427
7.8
2022-11-14 CVE-2022-28764 Incomplete Cleanup vulnerability in Zoom Meetings, Rooms and VDI Windows Meeting Clients
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability.
local
low complexity
zoom CWE-459
3.3
2022-10-31 CVE-2022-28763 Open Redirect vulnerability in Zoom Meetings and Virtual Desktop Infrastructure
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability.
network
low complexity
zoom CWE-601
critical
9.6
2022-10-14 CVE-2022-28759 Unspecified vulnerability in Zoom On-Premise Meeting Connector MMR 4.6.239.20200613/4.6.365.20210703
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability.
network
low complexity
zoom
8.6
2022-10-14 CVE-2022-28760 Unspecified vulnerability in Zoom On-Premise Meeting Connector MMR 4.6.239.20200613/4.6.365.20210703
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability.
network
low complexity
zoom
6.5
2022-10-14 CVE-2022-28761 Unspecified vulnerability in Zoom On-Premise Meeting Connector MMR 4.6.239.20200613/4.6.365.20210703/4.8.20220815.130
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability.
network
low complexity
zoom
6.5
2022-10-14 CVE-2022-28762 Unspecified vulnerability in Zoom Meetings 5.11.3/5.11.5
Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with 5.10.6 and prior to 5.12.0 contains a debugging port misconfiguration.
local
low complexity
zoom
7.8
2022-06-15 CVE-2022-22788 Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms
The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed.
local
zoom CWE-427
6.9