Zoom: >> Zoom Client For Meetings Security Vulnerabilities
In the Zoom Client for Meetings for Ubuntu Linux before version 5.1.0, there is an HTML injection flaw when sending a remote control request to a user in the process of in-meeting screen sharing. This could allow meeting participants to be targeted for social engineering attacks.
CVSS Score
3.7
EPSS Score
0.006
Published
2021-11-11
The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. This could lead to a malicious actor installing malicious software on a customer’s computer.
CVSS Score
4.7
EPSS Score
0.002
Published
2021-11-11