Vulnerabilities > Zoom > Zoom
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-13 | CVE-2023-28602 | Improper Verification of Cryptographic Signature vulnerability in Zoom Zoom for Windows clients prior to 5.13.5 contain an improper verification of cryptographic signature vulnerability. | 7.7 |
| 2023-06-13 | CVE-2023-34113 | Insufficient Verification of Data Authenticity vulnerability in Zoom Insufficient verification of data authenticity in Zoom for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access. | 8.8 |
| 2023-06-13 | CVE-2023-34121 | Unspecified vulnerability in Zoom Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access. | 8.8 |
| 2023-06-13 | CVE-2023-34122 | Unspecified vulnerability in Zoom Improper input validation in the installer for Zoom for Windows clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. | 7.8 |
| 2023-06-13 | CVE-2023-28598 | Injection vulnerability in Zoom Zoom for Linux clients prior to 5.13.10 contain an HTML injection vulnerability. | 6.5 |
| 2023-06-13 | CVE-2023-28599 | Injection vulnerability in Zoom Zoom clients prior to 5.13.10 contain an HTML injection vulnerability. | 4.3 |
| 2023-03-16 | CVE-2023-22880 | Unspecified vulnerability in Zoom Rooms, Virtual Desktop Infrastructure and Zoom Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. | 7.5 |
| 2023-01-09 | CVE-2022-36928 | Path Traversal vulnerability in Zoom Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability. | 7.1 |
| 2021-03-18 | CVE-2021-28133 | Information Exposure vulnerability in Zoom Zoom through 5.5.4 sometimes allows attackers to read private information on a participant's screen, even though the participant never attempted to share the private part of their screen. | 4.3 |
| 2020-06-08 | CVE-2020-6110 | Path Traversal vulnerability in Zoom 4.6.10 An exploitable partial path traversal vulnerability exists in the way Zoom Client version 4.6.10 processes messages including shared code snippets. | 6.8 |