What is the vulnerability ID of this Zoom vulnerability?

The vulnerability ID is CVE-2022-22783.

What is the severity of CVE-2022-22783?

The severity of CVE-2022-22783 is high with a CVSS score of 7.5.

How can I fix the vulnerability CVE-2022-22783?

To fix CVE-2022-22783, update Zoom On-Premise Meeting Connector Controller and On-Premise Meeting Connector MMR to version 4.8.102.20220311 or later.

Vulnerability/
CVE-2022-22783

high

7.5

28/4/2022

17/9/2024

CVE-2022-22783: Process memory exposure in Zoom on-premise Meeting services

First published: Thu Apr 28 2022(Updated: )

A vulnerability in Zoom On-Premise Meeting Connector Controller version 4.8.102.20220310 and On-Premise Meeting Connector MMR version 4.8.102.20220310 exposes process memory fragments to connected clients, which could be observed by a passive attacker.

Credit: security@zoom.us security@zoom.us

Affected Software	Affected Version	How to fix
Zoom Zoom On-premise Meeting Connector Controller	=4.8.102.20220310
Zoom Zoom On-premise Meeting Connector Mmr	=4.8.102.20220310

Never miss a vulnerability like this again

Reference Links

https://explore.zoom.us/en/trust/security/security-bulletin/

Frequently Asked Questions

What is the vulnerability ID of this Zoom vulnerability?
The vulnerability ID is CVE-2022-22783.
What software versions are affected by this vulnerability?
Zoom On-Premise Meeting Connector Controller version 4.8.102.20220310 and On-Premise Meeting Connector MMR version 4.8.102.20220310 are affected.
What is the severity of CVE-2022-22783?
The severity of CVE-2022-22783 is high with a CVSS score of 7.5.
What is the impact of CVE-2022-22783?
CVE-2022-22783 exposes process memory fragments to connected clients, which could be observed by a passive attacker.
How can I fix the vulnerability CVE-2022-22783?
To fix CVE-2022-22783, update Zoom On-Premise Meeting Connector Controller and On-Premise Meeting Connector MMR to version 4.8.102.20220311 or later.

collector/nvd-api
collector/nvd-index
agent/type
agent/author
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/title
agent/last-modified-date
agent/references
agent/tags
agent/description
agent/event
agent/first-publish-date
vendor/zoom
canonical/zoom zoom on-premise meeting connector controller
version/zoom zoom on-premise meeting connector controller/4.8.102.20220310
canonical/zoom zoom on-premise meeting connector mmr
version/zoom zoom on-premise meeting connector mmr/4.8.102.20220310

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.