Vulnerabilities > Zoom > Meetings > High

DATE CVE VULNERABILITY TITLE RISK
2023-11-15 CVE-2023-43582 Improper Authentication vulnerability in Zoom products
Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.
network
low complexity
zoom CWE-287
8.8
2023-11-14 CVE-2023-39204 Classic Buffer Overflow vulnerability in Zoom products
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
network
low complexity
zoom CWE-120
7.5
2023-11-14 CVE-2023-39206 Classic Buffer Overflow vulnerability in Zoom products
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
network
low complexity
zoom CWE-120
7.5
2023-06-30 CVE-2023-36539 Inadequate Encryption Strength vulnerability in Zoom products
Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information.
network
low complexity
zoom CWE-326
7.5
2023-03-27 CVE-2023-28596 Uncontrolled Search Path Element vulnerability in Zoom Meetings 5.12.6/5.9.0
Zoom Client for IT Admin macOS installers before version 5.13.5 contain a local privilege escalation vulnerability.
local
low complexity
zoom CWE-427
7.8
2023-03-16 CVE-2023-22883 Unspecified vulnerability in Zoom Meetings
Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability.
local
low complexity
zoom
7.8
2022-11-17 CVE-2022-28766 Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms
Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability.
local
low complexity
zoom CWE-427
7.3
2022-11-17 CVE-2022-28768 Race Condition vulnerability in Zoom Meetings
The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a local privilege escalation vulnerability.
local
low complexity
zoom CWE-362
7.8
2022-10-14 CVE-2022-28762 Unspecified vulnerability in Zoom Meetings 5.10.6/5.11.3/5.11.5
Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with 5.10.6 and prior to 5.12.0 contains a debugging port misconfiguration.
local
low complexity
zoom
7.8
2022-08-18 CVE-2022-28757 Unspecified vulnerability in Zoom Meetings
The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.6 contains a vulnerability in the auto update process.
local
low complexity
zoom
7.8