CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-28749

Zooms On-Premise Meeting Connector MMR before version 4.8.113.20220526 fails to properly check the permissions of a Zoom meeting attendee. As a result, a threat actor in the Zooms waiting room can join the meeting without the consent of the host.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

https://explore.zoom.us/en/trust/security/security-bulletin/
https://explore.zoom.us/en/trust/security/security-bulletin/

Products affected by CVE-2022-28749

Zoom » On-Premise Meeting Connector Multimedia Router » Version: 4.8.113.20220526

cpe:2.3:a:zoom:on-premise_meeting_connector_multimedia_router:4.8.113.20220526

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28749

Products

Pricing

Contact Us