CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34414

The network proxy page on the web portal for the Zoom on-premise Meeting Connector Controller before version 4.6.348.20201217, Zoom on-premise Meeting Connector MMR before version 4.6.348.20201217, Zoom on-premise Recording Connector before version 3.8.42.20200905, Zoom on-premise Virtual Room Connector before version 4.4.6620.20201110, and Zoom on-premise Virtual Room Connector Load Balancer before version 2.5.5495.20210326 fails to validate input sent in requests to update the network proxy configuration, which could lead to remote command injection on the on-premise image by a web portal administrator.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.8%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.5

References

Products affected by CVE-2021-34414

Zoom » Meeting Connector » Version: 1.0.23635.0520

cpe:2.3:a:zoom:meeting_connector:1.0.23635.0520
Zoom » Meeting Connector » Version: 1.0.23635.0911

cpe:2.3:a:zoom:meeting_connector:1.0.23635.0911
Zoom » Meeting Connector » Version: 1.0.31398.1104

cpe:2.3:a:zoom:meeting_connector:1.0.31398.1104
Zoom » Meeting Connector » Version: 1.0.34775.1213

cpe:2.3:a:zoom:meeting_connector:1.0.34775.1213
Zoom » Meeting Connector » Version: 2.5.863.0609

cpe:2.3:a:zoom:meeting_connector:2.5.863.0609
Zoom » Meeting Connector » Version: 3.6.43993.0312

cpe:2.3:a:zoom:meeting_connector:3.6.43993.0312
Zoom » Meeting Connector » Version: 4.0.74356.1206

cpe:2.3:a:zoom:meeting_connector:4.0.74356.1206
Zoom » Meeting Connector » Version: 4.3.114891.1123

cpe:2.3:a:zoom:meeting_connector:4.3.114891.1123
Zoom » Meeting Connector » Version: 4.3.134251.1029

cpe:2.3:a:zoom:meeting_connector:4.3.134251.1029
Zoom » Meeting Connector » Version: 4.3.36476.0327

cpe:2.3:a:zoom:meeting_connector:4.3.36476.0327
Zoom » Meeting Connector » Version: 4.3.98838.1114

cpe:2.3:a:zoom:meeting_connector:4.3.98838.1114
Zoom » Meeting Connector » Version: 4.5.201900.0926

cpe:2.3:a:zoom:meeting_connector:4.5.201900.0926
Zoom » Meeting Connector » Version: 4.5.546.20200116

cpe:2.3:a:zoom:meeting_connector:4.5.546.20200116
Zoom » Meeting Connector » Version: 4.6.148.20200430

cpe:2.3:a:zoom:meeting_connector:4.6.148.20200430
Zoom » Meeting Connector » Version: 4.6.159.20200505

cpe:2.3:a:zoom:meeting_connector:4.6.159.20200505
Zoom » Meeting Connector » Version: 4.6.239.20200613

cpe:2.3:a:zoom:meeting_connector:4.6.239.20200613
Zoom » Meeting Connector » Version: 4.6.327.20200724

cpe:2.3:a:zoom:meeting_connector:4.6.327.20200724
Zoom » Recording Connector » Version: 3.5.8996.0210

cpe:2.3:a:zoom:recording_connector:3.5.8996.0210
Zoom » Recording Connector » Version: 3.6.126602.20191031

cpe:2.3:a:zoom:recording_connector:3.6.126602.20191031
Zoom » Recording Connector » Version: 3.6.53423.0606

cpe:2.3:a:zoom:recording_connector:3.6.53423.0606
Zoom » Recording Connector » Version: 3.6.58530.0330

cpe:2.3:a:zoom:recording_connector:3.6.58530.0330
Zoom » Recording Connector » Version: 3.6.58865.1130

cpe:2.3:a:zoom:recording_connector:3.6.58865.1130
Zoom » Recording Connector » Version: 3.8.41.20200426

cpe:2.3:a:zoom:recording_connector:3.8.41.20200426
Zoom » Virtual Room Connector » Version: 2.5.5642.20210923

cpe:2.3:a:zoom:virtual_room_connector:2.5.5642.20210923
Zoom » Virtual Room Connector » Version: 4.1.5389.20200406

cpe:2.3:a:zoom:virtual_room_connector:4.1.5389.20200406
Zoom » Virtual Room Connector » Version: 4.1.5432.20200425

cpe:2.3:a:zoom:virtual_room_connector:4.1.5432.20200425
Zoom » Virtual Room Connector » Version: 4.1.5441.20200428

cpe:2.3:a:zoom:virtual_room_connector:4.1.5441.20200428
Zoom » Virtual Room Connector » Version: 4.4.6344.20200612

cpe:2.3:a:zoom:virtual_room_connector:4.4.6344.20200612
Zoom » Virtual Room Connector » Version: 4.4.6609.20201030

cpe:2.3:a:zoom:virtual_room_connector:4.4.6609.20201030
Zoom » Virtual Room Connector Load Balancer » Version: 2.5.5331.20200428

cpe:2.3:a:zoom:virtual_room_connector_load_balancer:2.5.5331.20200428

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34414

Products

Pricing

Contact Us