Vulnerabilities > Zoom > Meetings > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-15 CVE-2023-43588 Unspecified vulnerability in Zoom Meetings
Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.
network
low complexity
zoom
6.5
2023-11-14 CVE-2023-39199 Unspecified vulnerability in Zoom products
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.
network
low complexity
zoom
6.5
2023-11-14 CVE-2023-39205 Improper Check for Unusual or Exceptional Conditions vulnerability in Zoom products
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
network
low complexity
zoom CWE-754
6.5
2022-02-09 CVE-2022-22780 Resource Exhaustion vulnerability in Zoom Meetings
The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the following product versions: Android before version 5.8.6, iOS before version 5.9.0, Linux before version 5.8.6, macOS before version 5.7.3, and Windows before version 5.6.3.
network
low complexity
zoom CWE-400
6.5
2021-12-14 CVE-2021-34425 Server-Side Request Forgery (SSRF) vulnerability in Zoom Meetings
The Zoom Client for Meetings before version 5.7.3 (for Android, iOS, Linux, macOS, and Windows) contain a server side request forgery vulnerability in the chat\'s "link preview" functionality.
network
low complexity
zoom CWE-918
6.1