Zoom SDK
by Zoom Video Communications, Inc.
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-39217 | 0.00 | — | 0.01 | Aug 8, 2023 | Improper input validation in Zoom SDK’s before 5.14.10 may allow an unauthenticated user to enable a denial of service via network access. | |||
| CVE-2023-36533 | 0.00 | — | 0.01 | Aug 8, 2023 | Uncontrolled resource consumption in Zoom SDKs before 5.14.7 may allow an unauthenticated user to enable a denial of service via network access. | |||
| CVE-2021-28133 | 0.00 | — | 0.16 | Mar 18, 2021 | Zoom through 5.5.4 sometimes allows attackers to read private information on a participant's screen, even though the participant never attempted to share the private part of their screen. When a user shares a specific application window via the Share Screen functionality, other… | |||
| CVE-2020-9767 | 0.00 | — | 0.01 | Aug 14, 2020 | A vulnerability related to Dynamic-link Library (“DLL”) loading in the Zoom Sharing Service would allow an attacker who had local access to a machine on which the service was running with elevated privileges to elevate their system privileges as well through use of a… |
- CVE-2023-39217Aug 8, 2023risk 0.00cvss —epss 0.01
Improper input validation in Zoom SDK’s before 5.14.10 may allow an unauthenticated user to enable a denial of service via network access.
- CVE-2023-36533Aug 8, 2023risk 0.00cvss —epss 0.01
Uncontrolled resource consumption in Zoom SDKs before 5.14.7 may allow an unauthenticated user to enable a denial of service via network access.
- CVE-2021-28133Mar 18, 2021risk 0.00cvss —epss 0.16
Zoom through 5.5.4 sometimes allows attackers to read private information on a participant's screen, even though the participant never attempted to share the private part of their screen. When a user shares a specific application window via the Share Screen functionality, other…
- CVE-2020-9767Aug 14, 2020risk 0.00cvss —epss 0.01
A vulnerability related to Dynamic-link Library (“DLL”) loading in the Zoom Sharing Service would allow an attacker who had local access to a machine on which the service was running with elevated privileges to elevate their system privileges as well through use of a…