Vulnerabilities > Zoom > Meetings > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-15 | CVE-2023-43582 | Improper Authentication vulnerability in Zoom products Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access. | 8.8 |
| 2023-11-14 | CVE-2023-39204 | Classic Buffer Overflow vulnerability in Zoom products Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access. | 7.5 |
| 2023-11-14 | CVE-2023-39206 | Classic Buffer Overflow vulnerability in Zoom products Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access. | 7.5 |
| 2023-06-30 | CVE-2023-36539 | Inadequate Encryption Strength vulnerability in Zoom products Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information. | 7.5 |
| 2023-03-16 | CVE-2023-22883 | Unspecified vulnerability in Zoom Meetings Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. | 7.8 |
| 2022-11-17 | CVE-2022-28766 | Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. | 7.3 |
| 2022-11-17 | CVE-2022-28768 | Race Condition vulnerability in Zoom Meetings The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a local privilege escalation vulnerability. | 7.8 |
| 2022-10-14 | CVE-2022-28762 | Unspecified vulnerability in Zoom Meetings 5.11.3/5.11.5 Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with 5.10.6 and prior to 5.12.0 contains a debugging port misconfiguration. | 7.8 |
| 2022-04-28 | CVE-2022-22782 | Unspecified vulnerability in Zoom products The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft Outlook for Windows prior to version 5.10.3, and Zoom VDI Windows Meeting Clients prior to version 5.9.6; was susceptible to a local privilege escalation issue during the installer repair operation. | 7.1 |
| 2022-02-09 | CVE-2022-22780 | Resource Exhaustion vulnerability in Zoom Meetings The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the following product versions: Android before version 5.8.6, iOS before version 5.9.0, Linux before version 5.8.6, macOS before version 5.7.3, and Windows before version 5.6.3. | 7.8 |