Zoom Apps
by Zoom Video Communications, Inc.
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-45421 | Hig | 0.55 | 8.5 | 0.01 | Feb 25, 2025 | Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of privilege via network access. | ||
| CVE-2024-45419 | Hig | 0.53 | 8.1 | 0.01 | Nov 19, 2024 | Improper input validation in some Zoom Apps may allow an unauthenticated user to conduct a disclosure of information via network access. | ||
| CVE-2024-27240 | Hig | 0.46 | 7.1 | 0.00 | Jul 15, 2024 | Improper input validation in the installer for some Zoom Apps for Windows may allow an authenticated user to conduct a privilege escalation via local access. | ||
| CVE-2024-45422 | Med | 0.42 | 6.5 | 0.01 | Nov 19, 2024 | Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated user to conduct a denial of service via network access. | ||
| CVE-2024-45420 | Med | 0.28 | 4.3 | 0.00 | Nov 19, 2024 | Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an authenticated user to conduct a denial of service via network access. |
- risk 0.55cvss 8.5epss 0.01
Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of privilege via network access.
- risk 0.53cvss 8.1epss 0.01
Improper input validation in some Zoom Apps may allow an unauthenticated user to conduct a disclosure of information via network access.
- risk 0.46cvss 7.1epss 0.00
Improper input validation in the installer for some Zoom Apps for Windows may allow an authenticated user to conduct a privilege escalation via local access.
- risk 0.42cvss 6.5epss 0.01
Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated user to conduct a denial of service via network access.
- risk 0.28cvss 4.3epss 0.00
Uncontrolled resource consumption in some Zoom Apps before version 6.2.0 may allow an authenticated user to conduct a denial of service via network access.