Zoom Rooms App
by Zoom Video Communications, Inc.
CVEs (11)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-39821 | 0.00 | — | 0.00 | Jul 15, 2024 | Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows may allow an authenticated user to conduct a denial of service via local access. | |||
| CVE-2023-43591 | 0.00 | — | 0.00 | Nov 14, 2023 | Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access. | |||
| CVE-2023-43590 | 0.00 | — | 0.00 | Nov 14, 2023 | Link following in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access. | |||
| CVE-2023-36538 | 0.00 | — | 0.00 | Jul 11, 2023 | Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. | |||
| CVE-2023-36537 | 0.00 | — | 0.00 | Jul 11, 2023 | Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access. | |||
| CVE-2023-36536 | 0.00 | — | 0.00 | Jul 11, 2023 | Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. | |||
| CVE-2023-34121 | 0.00 | — | 0.01 | Jun 13, 2023 | Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access. | |||
| CVE-2023-22880 | 0.00 | — | 0.01 | Mar 16, 2023 | Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. A recent update to the Microsoft Edge WebView2 runtime used by the affected Zoom… | |||
| CVE-2022-36925 | 0.00 | — | 0.00 | Jan 9, 2023 | Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged… | |||
| CVE-2022-36926 | 0.00 | — | 0.00 | Jan 9, 2023 | Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root. | |||
| CVE-2022-36927 | 0.00 | — | 0.00 | Jan 9, 2023 | Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root. |
- CVE-2024-39821Jul 15, 2024risk 0.00cvss —epss 0.00
Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows may allow an authenticated user to conduct a denial of service via local access.
- CVE-2023-43591Nov 14, 2023risk 0.00cvss —epss 0.00
Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access.
- CVE-2023-43590Nov 14, 2023risk 0.00cvss —epss 0.00
Link following in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access.
- CVE-2023-36538Jul 11, 2023risk 0.00cvss —epss 0.00
Improper access control in Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.
- CVE-2023-36537Jul 11, 2023risk 0.00cvss —epss 0.00
Improper privilege management in Zoom Rooms for Windows before version 5.14.5 may allow an authenticated user to enable an escalation of privilege via local access.
- CVE-2023-36536Jul 11, 2023risk 0.00cvss —epss 0.00
Untrusted search path in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access.
- CVE-2023-34121Jun 13, 2023risk 0.00cvss —epss 0.01
Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients before 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access.
- CVE-2023-22880Mar 16, 2023risk 0.00cvss —epss 0.01
Zoom for Windows clients before version 5.13.3, Zoom Rooms for Windows clients before version 5.13.5 and Zoom VDI for Windows clients before 5.13.1 contain an information disclosure vulnerability. A recent update to the Microsoft Edge WebView2 runtime used by the affected Zoom…
- CVE-2022-36925Jan 9, 2023risk 0.00cvss —epss 0.00
Zoom Rooms for macOS clients before version 5.11.4 contain an insecure key generation mechanism. The encryption key used for IPC between the Zoom Rooms daemon service and the Zoom Rooms client was generated using parameters that could be obtained by a local low-privileged…
- CVE-2022-36926Jan 9, 2023risk 0.00cvss —epss 0.00
Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.
- CVE-2022-36927Jan 9, 2023risk 0.00cvss —epss 0.00
Zoom Rooms for macOS clients before version 5.11.3 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability to escalate their privileges to root.