CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28758

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.0%

CVSS Severity

CVSS v3 Score 8.2

References

Products affected by CVE-2022-28758

Zoom » Zoom On-Premise Meeting Connector Mmr » Version: N/A

cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_mmr:-
Zoom » Zoom On-Premise Meeting Connector Mmr » Version: 4.6.239.20200613

cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_mmr:4.6.239.20200613
Zoom » Zoom On-Premise Meeting Connector Mmr » Version: 4.6.365.20210703

cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_mmr:4.6.365.20210703
Zoom » Zoom On-Premise Meeting Connector Mmr » Version: 4.8.102.20220310

cpe:2.3:a:zoom:zoom_on-premise_meeting_connector_mmr:4.8.102.20220310

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-28758

Products

Pricing

Contact Us