CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15049

The ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 does not properly sanitize user input when constructing a shell command, which allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.299

EPSS Ranking 96.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.3

References

Products affected by CVE-2017-15049

Zoom » Zoom » Version: 1.0.22331.0731

cpe:2.3:a:zoom:zoom:1.0.22331.0731
Zoom » Zoom » Version: 1.1.26956.0918

cpe:2.3:a:zoom:zoom:1.1.26956.0918
Zoom » Zoom » Version: 1.1.32904.1120

cpe:2.3:a:zoom:zoom:1.1.32904.1120
Zoom » Zoom » Version: 1.1.33228.1124

cpe:2.3:a:zoom:zoom:1.1.33228.1124
Zoom » Zoom » Version: 1.1.37479.0107

cpe:2.3:a:zoom:zoom:1.1.37479.0107
Zoom » Zoom » Version: 1.1.38634.0127

cpe:2.3:a:zoom:zoom:1.1.38634.0127
Zoom » Zoom » Version: 1.1.44485.0317

cpe:2.3:a:zoom:zoom:1.1.44485.0317
Zoom » Zoom » Version: 2.0.106600.0904

cpe:2.3:a:zoom:zoom:2.0.106600.0904
Zoom » Zoom » Version: 2.0.49177.0430

cpe:2.3:a:zoom:zoom:2.0.49177.0430
Zoom » Zoom » Version: 2.0.52458.0531

cpe:2.3:a:zoom:zoom:2.0.52458.0531
Zoom » Zoom » Version: 2.0.57232.0713

cpe:2.3:a:zoom:zoom:2.0.57232.0713
Zoom » Zoom » Version: 2.0.63547.0830

cpe:2.3:a:zoom:zoom:2.0.63547.0830
Zoom » Zoom » Version: 2.0.70790.1031

cpe:2.3:a:zoom:zoom:2.0.70790.1031
Zoom » Zoom » Version: 2.0.75971.1216

cpe:2.3:a:zoom:zoom:2.0.75971.1216
Zoom » Zoom » Version: 2.0.81497.1116

cpe:2.3:a:zoom:zoom:2.0.81497.1116
Zoom » Zoom » Version: 2.0.87130.0317

cpe:2.3:a:zoom:zoom:2.0.87130.0317
Zoom » Zoom » Version: 2.0.89826.0417

cpe:2.3:a:zoom:zoom:2.0.89826.0417
Zoom » Zoom » Version: 2.0.91373.0502

cpe:2.3:a:zoom:zoom:2.0.91373.0502
Zoom » Zoom » Version: 2.0.98253.0707

cpe:2.3:a:zoom:zoom:2.0.98253.0707

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15049

Products

Pricing

Contact Us