Shodan
Vulnerabilities
Vulnerable Software
Zoom:  >> Meetings  Security Vulnerabilities
CVE-2023-43582
Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.
CVSS Score
5.5
EPSS Score
0.002
Published
2023-11-15
CVE-2023-43588
Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.
CVSS Score
3.5
EPSS Score
0.004
Published
2023-11-15
CVE-2023-39206
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
CVSS Score
3.7
EPSS Score
0.003
Published
2023-11-14
CVE-2023-39199
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.
CVSS Score
4.9
EPSS Score
0.001
Published
2023-11-14
CVE-2023-39204
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
CVSS Score
4.3
EPSS Score
0.003
Published
2023-11-14
CVE-2023-39205
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.
CVSS Score
4.3
EPSS Score
0.004
Published
2023-11-14
CVE-2023-36539
Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information.
CVSS Score
5.3
EPSS Score
0.002
Published
2023-06-30
CVE-2023-28596
Zoom Client for IT Admin macOS installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to privileges to root.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-03-27
CVE-2023-22883
Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to the SYSTEM user.
CVSS Score
7.2
EPSS Score
0.001
Published
2023-03-16
CVE-2022-28766
Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged user could exploit this vulnerability to run arbitrary code in the context of the Zoom client.
CVSS Score
3.3
EPSS Score
0.002
Published
2022-11-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved