Latest zoom meetings Vulnerabilities

Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Rooms<5.16.0
and 10 more
Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Virtual Desktop Infrastructure<5.14.13
Zoom Virtual Desktop Infrastructure>=5.15.0<5.15.11
Zoom Zoom<5.16.0
and 2 more
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Rooms<5.16.0
and 10 more
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Rooms<5.16.0
and 15 more
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Meetings<5.16.0
Zoom Video Software Development Kit<1.9.0
and 11 more
Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information.
Zoom Meetings=5.15.0
Zoom Meetings=5.15.0
Zoom Meetings=5.15.0
Zoom Meetings=5.15.1
Zoom Rooms=5.15.0
Zoom Rooms=5.15.0
and 18 more
Zoom Client for IT Admin macOS installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain duri...
Zoom Meetings<5.13.5
Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain du...
Zoom Meetings<5.13.5
Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged ...
Zoom Meetings<5.12.6
Zoom Rooms<5.12.6
The Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) before version 5.12.6 contains a local privilege escalation vulnerability. A local low-privileged user could exploit this v...
Zoom Meetings<5.12.6
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL ...
Zoom Meetings<5.12.6
Zoom Meetings<5.12.6
Zoom Meetings<5.12.6
Zoom Meetings<5.12.6
Zoom Meetings<5.12.6
Zoom Rooms<5.12.6
and 5 more
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious...
Zoom Meetings<5.12.2
Zoom Meetings<5.12.2
Zoom Meetings<5.12.2
Zoom Meetings<5.12.2
Zoom Meetings<5.12.2
Zoom Rooms For Conference Rooms<5.12.2
and 5 more
Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with 5.10.6 and prior to 5.12.0 contains a debugging port misconfiguration. When camera mode rendering context is enabled as par...
Zoom Meetings>=5.10.6<5.12.0
The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.6 contains a vulnerability in the auto update process. A local low-privileged user could ...
Zoom Meetings>=5.7.3<5.11.6
The Zoom Client for Meetings for MacOS (Standard and for IT Admin) before version 5.11.3 contains a vulnerability in the package signature validation during the update process. A local low-privileged ...
Zoom Meetings<5.11.3
The Zoom Client for Meetings for macOS (Standard and for IT Admin) starting with version 5.7.3 and before 5.11.5 contains a vulnerability in the auto update process. A local low-privileged user could ...
Zoom Meetings>=5.7.3<5.11.5
The Zoom Opener installer is downloaded by a user from the Launch meeting page, when attempting to join a meeting without having the Zoom Meeting Client installed. The Zoom Opener installer for Zoom C...
Zoom Meetings<5.10.3
Zoom Rooms<5.10.3
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.10.0 fails to properly validate the hostname during a server switch request. This issue could be used in a m...
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly parse XML stanzas in XMPP messages. This can allow a malicious user to break out of ...
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
The Zoom Client for Meetings (for Android, iOS, Linux, MacOS, and Windows) before version 5.10.0 failed to properly constrain client session cookies to Zoom domains. This issue could be used in a more...
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
Zoom Meetings<5.10.0
The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update ...
Zoom Meetings<5.10.0
Zoom Rooms<5.10.0
The Zoom Client for Meetings for MacOS (Standard and for IT Admin) prior to version 5.9.6 failed to properly check the package version during the update process. This could lead to a malicious actor u...
Zoom Meetings<5.9.6
The Zoom Client for Meetings for Windows prior to version 5.9.7, Zoom Rooms for Conference Room for Windows prior to version 5.10.0, Zoom Plugins for Microsoft Outlook for Windows prior to version 5.1...
Zoom Meetings<5.9.7
Zoom Rooms For Conference Rooms<5.10.0
Zoom VDI Windows Meeting Clients<5.9.6
Zoom Zoom Plugin For Microsoft Outlook<5.10.3
The Zoom Client for Meetings chat functionality was susceptible to Zip bombing attacks in the following product versions: Android before version 5.8.6, iOS before version 5.9.0, Linux before version 5...
Zoom Meetings<5.6.3
Zoom Meetings<5.7.3
Zoom Meetings<5.8.6
Zoom Meetings<5.8.6
Zoom Meetings<5.9.0
The Zoom Client for Meetings before version 5.7.3 (for Android, iOS, Linux, macOS, and Windows) contain a server side request forgery vulnerability in the chat\'s "link preview" functionality. In vers...
Zoom Meetings<5.7.3
Apple iPhone OS
Apple macOS
Google Android
Linux Linux kernel
Microsoft Windows
A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before ...
Zoom Meetings<5.8.3
Google Android
Zoom Meetings<5.8.4
Apple macOS
Apple iPhone OS
Linux Linux kernel
and 25 more
The Zoom Client for Meetings for Windows in all versions before version 5.3.2 writes log files to a user writable directory as a privileged user during the installation or update of the client. This c...
Zoom Meetings<5.3.2
During the installation process for all versions of the Zoom Client for Meetings for Windows before 5.4.0, it is possible to launch Internet Explorer. If the installer was launched with elevated privi...
Zoom Meetings<5.4.0
The Zoom Client for Meetings for Windows in all versions before 5.3.0 fails to properly validate the certificate information used to sign .msi files when performing an update of the client. This could...
Zoom Meetings<5.3.0
** DISPUTED ** airhost.exe in Zoom Client for Meetings 4.6.11 uses 3423423432325249 as the Initialization Vector (IV) for AES-256 CBC encryption. NOTE: the vendor states that this IV is used only with...
Zoom Meetings=4.6.11
** DISPUTED ** airhost.exe in Zoom Client for Meetings 4.6.11 uses the SHA-256 hash of 0123425234234fsdfsdr3242 for initialization of an OpenSSL EVP AES-256 CBC context. NOTE: the vendor states that t...
Zoom Meetings=4.6.11
Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key.
Zoom Meetings<=4.6.9
Zoom Client for Meetings through 4.6.8 on macOS has the disable-library-validation entitlement, which allows a local process (with the user's privileges) to obtain unprompted microphone and camera acc...
Zoom Meetings<=4.6.8
Zoom Client for Meetings through 4.6.8 on macOS copies runwithroot to a user-writable temporary directory during installation, which allows a local process (with the user's privileges) to obtain root ...
Zoom Meetings<=4.6.8

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203