Unrated severityNVD Advisory· Published May 18, 2022· Updated Sep 16, 2024

Update package downgrade in Zoom Client for Meetings for Windows

CVE-2022-22786

Description

The Zoom Client for Meetings for Windows before version 5.10.0 and Zoom Rooms for Conference Room for Windows before version 5.10.0, fails to properly check the installation version during the update process. This issue could be used in a more sophisticated attack to trick a user into downgrading their Zoom client to a less secure version.

Affected products

Zoom Video Communications, Inc./Zoom Rooms For Conference Room For Windowsv5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

explore.zoom.us/en/trust/security/security-bulletinmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000