CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34425

The Zoom Client for Meetings before version 5.7.3 (for Android, iOS, Linux, macOS, and Windows) contain a server side request forgery vulnerability in the chat\'s "link preview" functionality. In versions prior to 5.7.3, if a user were to enable the chat\'s "link preview" feature, a malicious actor could trick the user into potentially sending arbitrary HTTP GET requests to URLs that the actor cannot reach directly.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.5%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 4.0

References

Products affected by CVE-2021-34425

Zoom » Meetings » Version: N/A

cpe:2.3:a:zoom:meetings:-
Zoom » Meetings » Version: 4.6.10

cpe:2.3:a:zoom:meetings:4.6.10
Zoom » Meetings » Version: 4.6.11

cpe:2.3:a:zoom:meetings:4.6.11
Zoom » Meetings » Version: 4.6.12

cpe:2.3:a:zoom:meetings:4.6.12
Zoom » Meetings » Version: 4.6.8

cpe:2.3:a:zoom:meetings:4.6.8
Zoom » Meetings » Version: 4.6.9

cpe:2.3:a:zoom:meetings:4.6.9
Zoom » Meetings » Version: 5.0.0

cpe:2.3:a:zoom:meetings:5.0.0
Zoom » Meetings » Version: 5.0.1

cpe:2.3:a:zoom:meetings:5.0.1
Zoom » Meetings » Version: 5.0.2

cpe:2.3:a:zoom:meetings:5.0.2
Zoom » Meetings » Version: 5.0.3

cpe:2.3:a:zoom:meetings:5.0.3
Zoom » Meetings » Version: 5.0.4

cpe:2.3:a:zoom:meetings:5.0.4
Zoom » Meetings » Version: 5.0.5

cpe:2.3:a:zoom:meetings:5.0.5
Zoom » Meetings » Version: 5.1.0

cpe:2.3:a:zoom:meetings:5.1.0
Zoom » Meetings » Version: 5.1.1

cpe:2.3:a:zoom:meetings:5.1.1
Zoom » Meetings » Version: 5.1.2

cpe:2.3:a:zoom:meetings:5.1.2
Zoom » Meetings » Version: 5.1.3

cpe:2.3:a:zoom:meetings:5.1.3
Zoom » Meetings » Version: 5.2.0

cpe:2.3:a:zoom:meetings:5.2.0
Zoom » Meetings » Version: 5.2.1

cpe:2.3:a:zoom:meetings:5.2.1
Zoom » Meetings » Version: 5.2.2

cpe:2.3:a:zoom:meetings:5.2.2
Zoom » Meetings » Version: 5.2.3

cpe:2.3:a:zoom:meetings:5.2.3
Zoom » Meetings » Version: 5.3.0

cpe:2.3:a:zoom:meetings:5.3.0
Zoom » Meetings » Version: 5.3.1

cpe:2.3:a:zoom:meetings:5.3.1
Zoom » Meetings » Version: 5.3.2

cpe:2.3:a:zoom:meetings:5.3.2
Zoom » Meetings » Version: 5.4.0

cpe:2.3:a:zoom:meetings:5.4.0
Zoom » Meetings » Version: 5.4.1

cpe:2.3:a:zoom:meetings:5.4.1
Zoom » Meetings » Version: 5.4.2

cpe:2.3:a:zoom:meetings:5.4.2
Zoom » Meetings » Version: 5.4.3

cpe:2.3:a:zoom:meetings:5.4.3
Zoom » Meetings » Version: 5.4.4

cpe:2.3:a:zoom:meetings:5.4.4
Zoom » Meetings » Version: 5.4.6

cpe:2.3:a:zoom:meetings:5.4.6
Zoom » Meetings » Version: 5.4.7

cpe:2.3:a:zoom:meetings:5.4.7
Zoom » Meetings » Version: 5.4.9

cpe:2.3:a:zoom:meetings:5.4.9
Zoom » Meetings » Version: 5.5.0

cpe:2.3:a:zoom:meetings:5.5.0
Zoom » Meetings » Version: 5.5.1

cpe:2.3:a:zoom:meetings:5.5.1
Zoom » Meetings » Version: 5.5.2

cpe:2.3:a:zoom:meetings:5.5.2
Zoom » Meetings » Version: 5.5.4

cpe:2.3:a:zoom:meetings:5.5.4
Zoom » Meetings » Version: 5.5.5

cpe:2.3:a:zoom:meetings:5.5.5
Zoom » Meetings » Version: 5.6.0

cpe:2.3:a:zoom:meetings:5.6.0
Zoom » Meetings » Version: 5.6.1

cpe:2.3:a:zoom:meetings:5.6.1
Zoom » Meetings » Version: 5.6.3

cpe:2.3:a:zoom:meetings:5.6.3
Zoom » Meetings » Version: 5.6.4

cpe:2.3:a:zoom:meetings:5.6.4
Zoom » Meetings » Version: 5.6.6

cpe:2.3:a:zoom:meetings:5.6.6
Zoom » Meetings » Version: 5.6.7

cpe:2.3:a:zoom:meetings:5.6.7
Zoom » Meetings » Version: 5.7.0

cpe:2.3:a:zoom:meetings:5.7.0
Zoom » Meetings » Version: 5.7.1

cpe:2.3:a:zoom:meetings:5.7.1
Apple » Iphone Os » Version: N/A

cpe:2.3:o:apple:iphone_os:-
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-
Google » Android » Version: N/A

cpe:2.3:o:google:android:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-34425

Products

Pricing

Contact Us