Shodan
Vulnerabilities
Vulnerable Software
Zoom:  >> Zoom  Security Vulnerabilities
CVE-2025-49462
Cross-site scripting in certain Zoom Clients before version 6.4.5 may allow an authenticated user to conduct a disclosure of information via network access.
CVSS Score
3.5
EPSS Score
0.0
Published
2025-07-10
CVE-2025-49463
Insufficient control flow management in certain Zoom Clients for iOS before version 6.4.5 may allow an unauthenticated user to conduct a disclosure of information via network access.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-07-10
CVE-2025-49464
Classic buffer overflow in certain Zoom Clients for Windows may allow an authorised user to conduct a denial of service via network access.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-07-10
CVE-2024-27242
Cross site scripting in Zoom Desktop Client for Linux before version 5.17.10 may allow an authenticated user to conduct a denial of service via network access.
CVSS Score
4.1
EPSS Score
0.001
Published
2024-04-09
CVE-2024-27247
Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-04-09
CVE-2024-24694
Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access.
CVSS Score
5.9
EPSS Score
0.0
Published
2024-04-09
CVE-2024-24699
Business logic error in some Zoom clients may allow an authenticated user to conduct information disclosure via network access.
CVSS Score
6.5
EPSS Score
0.003
Published
2024-02-14
CVE-2024-24690
Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-02-14
CVE-2024-24691
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via network access.
CVSS Score
9.6
EPSS Score
0.005
Published
2024-02-14
CVE-2024-24695
Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via network access.
CVSS Score
6.8
EPSS Score
0.002
Published
2024-02-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved