zoom

226 tracked vulnerabilities.

CVE-2021-34413 HIGH
Zoom Plugin for Microsoft Outlook for macOS < 5.3.52553.0918 - Privilege Escalation via TOC/TOU Race Condition
Sep 27, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-34412 HIGH
Zoom Meetings < 5.4.0 - Local Privilege Escalation via Internet Explorer Launch
Sep 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-34411 HIGH
Zoom Rooms < 5.3.0 - Local Privilege Escalation via Internet Explorer Launch
Sep 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-34410 HIGH
Zoom Plugin for Microsoft Outlook for Mac < 5.0.25611.0521 - Privilege Escalation via User-Writable Application Bundle
Sep 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-34409 HIGH
Zoom Meetings < 5.2.0 - Privilege Escalation via User-Writable Installation Scripts
Sep 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-34408 HIGH
Zoom Meetings < 5.3.2 - Privilege Escalation via Log File Symlink Attack
Sep 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-33907 CRITICAL
Zoom Meetings < 5.3.0 - Remote Code Execution via Improper Certificate Validation
Sep 27, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-30480 HIGH
Zoom Chat <2021-04-09 - Authenticated RCE
Apr 09, 2021
CVSS 8.5
EPSS 0.09
CVE-2021-28133 MEDIUM
Zoom < 5.5.4 - Unauthorized Screen Content Exposure via Share Screen Functionality
Mar 18, 2021
CVSS 4.3
EPSS 0.05
CVE-2020-9767 HIGH
Zoom Sharing Service - Uncontrolled Search Path Element via DLL Loading
Aug 14, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-6110 HIGH
Zoom Client <4.6.10 - Path Traversal
Jun 08, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-6109 CRITICAL
Zoom client <4.6.10 - Path Traversal
Jun 08, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-11443 HIGH
Zoom IT Installer < 4.6.10 - Unauthenticated Arbitrary File Deletion via Symbolic Link Attack
May 04, 2020
CVSS 8.1
EPSS 0.00
CVE-2020-11877 HIGH
Zoom Client for Meetings <4.6.11 - Info Disclosure
Apr 17, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-11876 HIGH
Zoom Meetings 4.6.11 - Use of a Broken or Risky Cryptographic Algorithm
Apr 17, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-11500 HIGH
Zoom Meetings < 4.6.9 - Use of ECB Mode in AES Encryption
Apr 03, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-11470 LOW
Zoom Meetings < 4.6.8 - Unauthenticated Microphone and Camera Access via Crafted Library Loading
Apr 01, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-11469 HIGH
Zoom Client for Meetings <4.6.8 - Privilege Escalation
Apr 01, 2020
CVSS 7.8
EPSS 0.00
CVE-2019-13567 HIGH
Zoom < 4.4.53932.0709 - Remote Code Execution via Malicious Launch URL
Jul 12, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-13450 MEDIUM
RingCentral 7.0.136380.0312 - Unauthenticated Forced Video Call Activation via Localhost Web Server
Jul 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-13449 MEDIUM
Zoom < 4.4.2 - Denial of Service via Invalid Launch Requests
Jul 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2018-15715 CRITICAL
Zoom < 4.1.34814.1119 (Windows), < 4.1.34801.1116 (Mac), <= 2.4.129780.0915 (Linux) - Unauthenticated Message Spoofing
Nov 30, 2018
CVSS 9.8
EPSS 0.01
CVE-2017-15049 HIGH
Zoom < 2.0.115900.1201 - Remote Code Execution via zoommtg:// Scheme Handler
Dec 19, 2017
CVSS 8.8
EPSS 0.17
CVE-2017-15048 HIGH
Zoom < 2.0.115900.1201 - Remote Code Execution via zoommtg:// Scheme Handler
Dec 19, 2017
CVSS 8.8
EPSS 0.13
CVE-2014-5811
Zoom Cloud Meetings for Android - Man-in-the-Middle via Unverified X.509 Certificates
Sep 09, 2014
EPSS 0.00
Products
rooms 106 meeting_software_development_kit 83 workplace_desktop 73 zoom 63 workplace_virtual_desktop_infrastructure 56 rooms_controller 44 workplace 39 meetings 37 virtual_desktop_infrastructure 26 video_software_development_kit 23 vdi_windows_meeting_clients 9 zoom_on-premise_meeting_connector_mmr 9 meeting_connector 6 zoom_on-premise_meeting_connector_controller 5 rooms_for_conference_rooms 4 zoom_on-premise_recording_connector 4 zoom_on-premise_virtual_room_connector 4 zoom_on-premise_virtual_room_connector_load_balancer 4 zoom_plugin_for_microsoft_outlook 3 android_meeting_sdk 2 android_video_sdk 2 controllers_for_zoom_rooms 2 hybrid_mmr 2 hybrid_zproxy 2 iphone_os_meeting_sdk 2 iphone_os_video_sdk 2 macos_meeting_sdk 2 macos_video_sdk 2 meeting_sdk 2 meetings_for_blackberry 2
Quick Filters
Critical CVEs With Exploits In CISA KEV