Vulnerability Details CVE-2022-28764
The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.6 is susceptible to a local information exposure vulnerability. A failure to clear data from a local SQL database after a meeting ends and the usage of an insufficiently secure per-device key encrypting that database results in a local malicious user being able to obtain meeting information such as in-meeting chat for the previous meeting attended from that local user account.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.2%
CVSS Severity
CVSS v3 Score 3.3
References
Products affected by CVE-2022-28764
-
cpe:2.3:a:zoom:meetings:-
-
cpe:2.3:a:zoom:meetings:4.6.10
-
cpe:2.3:a:zoom:meetings:4.6.11
-
cpe:2.3:a:zoom:meetings:4.6.12
-
cpe:2.3:a:zoom:meetings:4.6.9
-
cpe:2.3:a:zoom:meetings:5.0.0
-
cpe:2.3:a:zoom:meetings:5.0.1
-
cpe:2.3:a:zoom:meetings:5.0.2
-
cpe:2.3:a:zoom:meetings:5.0.3
-
cpe:2.3:a:zoom:meetings:5.0.4
-
cpe:2.3:a:zoom:meetings:5.0.5
-
cpe:2.3:a:zoom:meetings:5.1.0
-
cpe:2.3:a:zoom:meetings:5.1.1
-
cpe:2.3:a:zoom:meetings:5.1.2
-
cpe:2.3:a:zoom:meetings:5.1.3
-
cpe:2.3:a:zoom:meetings:5.10.6
-
cpe:2.3:a:zoom:meetings:5.11.3
-
cpe:2.3:a:zoom:meetings:5.11.5
-
cpe:2.3:a:zoom:meetings:5.12.0
-
cpe:2.3:a:zoom:meetings:5.2.0
-
cpe:2.3:a:zoom:meetings:5.2.1
-
cpe:2.3:a:zoom:meetings:5.2.2
-
cpe:2.3:a:zoom:meetings:5.2.3
-
cpe:2.3:a:zoom:meetings:5.3.0
-
cpe:2.3:a:zoom:meetings:5.3.1
-
cpe:2.3:a:zoom:meetings:5.3.2
-
cpe:2.3:a:zoom:meetings:5.4.0
-
cpe:2.3:a:zoom:meetings:5.4.1
-
cpe:2.3:a:zoom:meetings:5.4.2
-
cpe:2.3:a:zoom:meetings:5.4.3
-
cpe:2.3:a:zoom:meetings:5.4.4
-
cpe:2.3:a:zoom:meetings:5.4.6
-
cpe:2.3:a:zoom:meetings:5.4.7
-
cpe:2.3:a:zoom:meetings:5.4.9
-
cpe:2.3:a:zoom:meetings:5.5.0
-
cpe:2.3:a:zoom:meetings:5.5.1
-
cpe:2.3:a:zoom:meetings:5.5.2
-
cpe:2.3:a:zoom:meetings:5.5.4
-
cpe:2.3:a:zoom:meetings:5.5.5
-
cpe:2.3:a:zoom:meetings:5.6.0
-
cpe:2.3:a:zoom:meetings:5.6.1
-
cpe:2.3:a:zoom:meetings:5.6.3
-
cpe:2.3:a:zoom:meetings:5.6.4
-
cpe:2.3:a:zoom:meetings:5.6.6
-
cpe:2.3:a:zoom:meetings:5.6.7
-
cpe:2.3:a:zoom:meetings:5.7.0
-
cpe:2.3:a:zoom:meetings:5.7.1
-
cpe:2.3:a:zoom:meetings:5.7.3
-
cpe:2.3:a:zoom:meetings:5.7.4
-
cpe:2.3:a:zoom:meetings:5.7.5
-
cpe:2.3:a:zoom:meetings:5.7.6
-
cpe:2.3:a:zoom:meetings:5.7.7
-
cpe:2.3:a:zoom:meetings:5.7.8
-
cpe:2.3:a:zoom:meetings:5.8.0
-
cpe:2.3:a:zoom:meetings:5.8.6
-
cpe:2.3:a:zoom:meetings:5.9.0
-
cpe:2.3:a:zoom:meetings:5.9.6
-
cpe:2.3:a:zoom:rooms:-
-
cpe:2.3:a:zoom:rooms:4.6.5
-
cpe:2.3:a:zoom:rooms:5.0.0
-
cpe:2.3:a:zoom:rooms:5.0.2
-
cpe:2.3:a:zoom:rooms:5.0.3
-
cpe:2.3:a:zoom:rooms:5.0.4
-
cpe:2.3:a:zoom:rooms:5.0.5
-
cpe:2.3:a:zoom:rooms:5.1.0
-
cpe:2.3:a:zoom:rooms:5.1.1
-
cpe:2.3:a:zoom:rooms:5.1.2
-
cpe:2.3:a:zoom:rooms:5.11.0
-
cpe:2.3:a:zoom:rooms:5.11.3
-
cpe:2.3:a:zoom:rooms:5.11.4
-
cpe:2.3:a:zoom:rooms:5.2.0
-
cpe:2.3:a:zoom:rooms:5.2.1
-
cpe:2.3:a:zoom:rooms:5.2.2
-
cpe:2.3:a:zoom:rooms:5.3.0
-
cpe:2.3:a:zoom:rooms:5.4.0
-
cpe:2.3:a:zoom:rooms:5.4.3
-
cpe:2.3:a:zoom:rooms:5.5.0
-
cpe:2.3:a:zoom:rooms:5.5.1
-
cpe:2.3:a:zoom:rooms:5.6.0
-
cpe:2.3:a:zoom:rooms:5.6.3
-
cpe:2.3:a:zoom:rooms:5.6.7
-
cpe:2.3:a:zoom:rooms:5.7.0
-
cpe:2.3:a:zoom:rooms:5.7.3
-
cpe:2.3:a:zoom:rooms:5.7.5
-
cpe:2.3:a:zoom:rooms:5.8.0
-
cpe:2.3:a:zoom:vdi_windows_meeting_clients:-