Vulnerabilities > Zoom > Rooms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-09 | CVE-2022-36926 | Unspecified vulnerability in Zoom Rooms Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. | 7.8 |
| 2023-01-09 | CVE-2022-36927 | Unspecified vulnerability in Zoom Rooms Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. | 7.8 |
| 2023-01-09 | CVE-2022-36929 | Unspecified vulnerability in Zoom Rooms The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability. | 7.8 |
| 2023-01-09 | CVE-2022-36930 | Unspecified vulnerability in Zoom Rooms Zoom Rooms for Windows installers before version 5.13.0 contain a local privilege escalation vulnerability. | 7.8 |
| 2022-11-17 | CVE-2022-28766 | Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. | 7.3 |
| 2022-11-17 | CVE-2022-36924 | Uncontrolled Search Path Element vulnerability in Zoom Rooms The Zoom Rooms Installer for Windows prior to 5.12.6 contains a local privilege escalation vulnerability. | 7.8 |
| 2022-08-17 | CVE-2022-28752 | Unspecified vulnerability in Zoom Rooms Zoom Rooms for Conference Rooms for Windows versions before 5.11.0 are susceptible to a Local Privilege Escalation vulnerability. | 7.8 |
| 2022-06-15 | CVE-2022-22788 | Uncontrolled Search Path Element vulnerability in Zoom Meetings and Rooms The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed. | 7.8 |
| 2022-05-18 | CVE-2022-22786 | Download of Code Without Integrity Check vulnerability in Zoom Meetings and Rooms The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update process. | 8.8 |
| 2021-09-27 | CVE-2021-34409 | Incorrect Permission Assignment for Critical Resource vulnerability in Zoom Meetings, Rooms and Screen Sharing It was discovered that the installation packages of the Zoom Client for Meetings for MacOS (Standard and for IT Admin) installation before version 5.2.0, Zoom Client Plugin for Sharing iPhone/iPad before version 5.2.0, and Zoom Rooms for Conference before version 5.1.0, copy pre- and post- installation shell scripts to a user-writable directory. | 7.8 |