CVE-2022-28761
First published: Fri Oct 14 2022(Updated: )
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting disruptions.
Credit: security@zoom.us
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zoom Zoom On-premise Meeting Connector Mmr | <4.8.20220916.131 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-28761?
CVE-2022-28761 is a vulnerability in Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 that allows a malicious actor to disrupt meetings by preventing participants from receiving audio and video.
How severe is CVE-2022-28761?
CVE-2022-28761 has a severity score of 6.5, which indicates a medium severity level.
How does CVE-2022-28761 affect Zoom On-Premise Meeting Connector MMR?
CVE-2022-28761 allows a malicious actor in a meeting or webinar with authorized access to disrupt audio and video for participants, causing meeting disruptions.
What is the fix for CVE-2022-28761?
To fix CVE-2022-28761, users should update to version 4.8.20220916.131 or later of Zoom On-Premise Meeting Connector MMR.
Where can I find more information about CVE-2022-28761?
More information about CVE-2022-28761 can be found in the security bulletin on the Zoom website: https://explore.zoom.us/en/trust/security/security-bulletin/
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/event
- agent/type
- vendor/zoom
- canonical/zoom zoom on-premise meeting connector mmr