cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-0147,https://securityvulnerability.io/vulnerability/CVE-2025-0147,Type Confusion in Zoom Workplace App for Linux Leading to Escalation of Privilege,"A type confusion vulnerability in the Zoom Workplace App for Linux allows an authorized user to execute an escalation of privilege by leveraging network access. This security flaw, present in versions prior to 6.2.10, can potentially permit unauthorized actions by compromised accounts within the application, highlighting the need for prompt updates to mitigate risks.","Zoom Communications, Inc",Zoom Workplace App For Linux,8.8,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-30T19:49:00.792Z,0
CVE-2024-45419,https://securityvulnerability.io/vulnerability/CVE-2024-45419,Unauthorized Information Disclosure via Network Access,"The vulnerability results from inadequate input validation within certain Zoom Apps, potentially enabling unauthenticated users to access sensitive information through network exploitation. This can lead to unauthorized data exposure, posing a significant risk to user privacy and security. It is essential for users and administrators to ensure that they are using the latest versions of affected Zoom Apps to mitigate this risk.",Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",8.1,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-11-19T19:28:48.335Z,0
CVE-2024-39825,https://securityvulnerability.io/vulnerability/CVE-2024-39825,Buffer Overflow Vulnerability in Zoom Workplace Apps and Rooms Clients Allows for Escalation of Privilege,"A buffer overflow vulnerability exists in the Zoom Workplace Apps and Rooms Clients that potentially allows an authenticated user to escalate their privileges. This issue can be exploited via network access, posing significant security risks to organizations using these platforms. Users of affected products should ensure they apply security updates immediately to mitigate potential exploitation.",Zoom,Zoom Workplace Apps And Rooms Clients,8.5,HIGH,0.0005000000237487257,false,,false,false,false,,,false,false,,2024-08-14T17:15:00.000Z,0
CVE-2024-24691,https://securityvulnerability.io/vulnerability/CVE-2024-24691,Unauthenticated Escalation of Privilege Vulnerability in Zoom Desktop Client for Windows,"A security flaw in various Zoom products, specifically the Zoom Desktop Client, Zoom VDI Client, and Zoom Meeting SDK for Windows, exists due to improper input validation. This vulnerability could enable an unauthenticated user to perform an elevation of privilege attack through network access, potentially compromising sensitive information and user permissions. It is crucial for users and administrators to remain vigilant and apply any security updates provided by Zoom to mitigate this vulnerability.","Zoom Video Communications, Inc.","Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows",9.8,CRITICAL,0.0010499999625608325,false,,true,false,false,,,true,true,2024-02-16T17:52:02.617Z,2024-02-14T00:15:00.000Z,9953
CVE-2024-24697,https://securityvulnerability.io/vulnerability/CVE-2024-24697,Untrusted Search Path Vulnerability in Zoom 32 bit Windows Clients Could Lead to Escalation of Privilege,"A vulnerability exists in the 32-bit Windows client of Zoom, stemming from an untrusted search path issue. This flaw allows an authenticated user to leverage local access for privilege escalation. It highlights the importance of ensuring proper security measures and validation of search paths within applications to mitigate potential exploitation.",Zoom,"Vdi Windows Meeting Clients,Rooms,Zoom,Meeting Sdk",7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-02-14T00:15:00.000Z,0
CVE-2023-49647,https://securityvulnerability.io/vulnerability/CVE-2023-49647,Zoom Desktop Client for Windows Vulnerability: Escalation of Privilege via Local Access,"An issue has been identified in the Zoom Desktop Client, VDI Client, and SDKs for Windows that presents an improper access control vulnerability. This flaw could enable an authenticated user to escalate privileges through local access, which may compromise the security of the affected systems. Users and organizations relying on these Zoom products should consider upgrading to versions 5.16.10 or later to mitigate the associated risks.","Zoom Video Communications, Inc.","Zoom Desktop Client For Windows, Zoom Vdi Client For Windows, And Zoom Sdks For Windows Before Version 5.16.10",7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-01-12T21:44:00.743Z,0
CVE-2023-43586,https://securityvulnerability.io/vulnerability/CVE-2023-43586,Path Traversal Vulnerability in Zoom Desktop Client and SDKs on Windows,"A path traversal vulnerability in the Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows allows authenticated users to exploit network access for privilege escalation. Attackers may leverage this weakness to access restricted files and execute unauthorized commands, posing a significant security risk.","Zoom Video Communications, Inc.","Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows",7.3,HIGH,0.0007999999797903001,false,,false,false,false,,,false,false,,2023-12-13T23:15:00.000Z,0
CVE-2023-43582,https://securityvulnerability.io/vulnerability/CVE-2023-43582,Improper Authorization in Zoom Clients Leading to Privilege Escalation,"An improper authorization vulnerability in various Zoom client implementations can potentially allow an authorized user to conduct privilege escalation through network access. This flaw may enable unauthorized access to more sensitive features, compromising the integrity of the user’s session and introducing considerable risks. Users are advised to update their Zoom clients to the latest versions to mitigate this issue.","Zoom Video Communications, Inc.",Zoom Clients,8.8,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2023-11-15T00:15:00.000Z,0
CVE-2023-43591,https://securityvulnerability.io/vulnerability/CVE-2023-43591,Improper Privilege Management in Zoom Rooms for macOS,"An improper privilege management flaw exists in Zoom Rooms for macOS that may enable an authenticated user to escalate privileges after gaining local access. This vulnerability affects all versions prior to 5.16.0, posing potential risks to system integrity and confidentiality. It is crucial for users to update to the latest version to mitigate this risk.","Zoom Video Communications, Inc.",Zoom Rooms For Mac OS,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-11-15T00:15:00.000Z,0
CVE-2023-43590,https://securityvulnerability.io/vulnerability/CVE-2023-43590,Privilege Escalation Vulnerability in Zoom Rooms for macOS,"A vulnerability in Zoom Rooms for macOS, present in versions prior to 5.16.0, allows an authenticated user to perform privilege escalation following local access. This could enable malicious users to gain elevated permissions and potentially alter system configurations or access sensitive information within the compromised system. Users are strongly advised to update to the latest version to mitigate any risks associated with this vulnerability.","Zoom Video Communications, Inc.",Zoom Rooms For Mac OS,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-11-15T00:15:00.000Z,0
CVE-2023-39203,https://securityvulnerability.io/vulnerability/CVE-2023-39203,Uncontrolled Resource Consumption in Zoom Desktop Client and VDI Client,"A vulnerability in Zoom Team Chat has been identified, which allows for uncontrolled resource consumption in both Zoom Desktop Client for Windows and Zoom VDI Client. An unauthenticated user can exploit this vulnerability via network access, potentially leading to unauthorized disclosure of information. Users should ensure they are updated with the latest security patches provided by Zoom to mitigate this risk.","Zoom Video Communications, Inc.",Zoom Rooms Client For Windows And Zoom Vdi Client,7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2023-11-14T23:15:00.000Z,0
CVE-2023-39208,https://securityvulnerability.io/vulnerability/CVE-2023-39208,Improper Input Validation in Zoom Desktop Client for Linux,"An issue identified in Zoom Desktop Client for Linux prior to version 5.15.10 involves a flaw in input validation, which can be exploited by unauthenticated users to execute denial-of-service attacks through network access. This vulnerability poses significant risks to users, emphasizing the importance of maintaining updated software versions to safeguard against potential attacks.","Zoom Video Communications, Inc.",Zoom Desktop Client For Linux,7.5,HIGH,0.000859999970998615,false,,false,false,false,,,false,false,,2023-09-12T20:15:00.000Z,0
CVE-2023-39211,https://securityvulnerability.io/vulnerability/CVE-2023-39211,Improper Privilege Management in Zoom Desktop Client and Rooms for Windows,"A flaw in the Zoom Desktop Client and Zoom Rooms for Windows allows authenticated users to potentially enable information disclosure through local access. This vulnerability arises from improper privilege management in versions prior to 5.15.5, which may expose sensitive information to users who should not have access.","Zoom Video Communications, Inc.",Zoom Desktop Client For Windows And Zoom Rooms For Windows,8.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-08T22:15:00.000Z,0
CVE-2023-39212,https://securityvulnerability.io/vulnerability/CVE-2023-39212,Untrusted Search Path Vulnerability in Zoom Rooms for Windows,"The Zoom Rooms for Windows software contains a vulnerability related to an untrusted search path that affects versions prior to 5.15.5. This issue may allow an authenticated user to initiate a denial of service attack through local access, potentially disrupting the functionality of the application.","Zoom Video Communications, Inc.",Zoom Rooms For Windows,7.9,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-08T22:15:00.000Z,0
CVE-2023-39213,https://securityvulnerability.io/vulnerability/CVE-2023-39213,Escalation of Privilege in Zoom Desktop Client and VDI Client,"A vulnerability affecting the Zoom Desktop Client and Zoom VDI Client prior to version 5.15.2 allows an unauthenticated user to exploit improper neutralization of special elements. This could lead to privilege escalation through network access, potentially compromising the integrity of the system.","Zoom Video Communications, Inc.",Zoom Desktop Client For Windows And Zoom Vdi Client,9.6,CRITICAL,0.0020000000949949026,false,,false,false,false,,,false,false,,2023-08-08T22:15:00.000Z,0
CVE-2023-39214,https://securityvulnerability.io/vulnerability/CVE-2023-39214,Sensitive Information Exposure in Zoom Client SDK Prior to Version 5.15.5,"The Zoom Client SDK, prior to version 5.15.5, has a vulnerability that may expose sensitive information to authenticated users. This exposure could potentially allow an attacker to execute a denial of service attack through network access, compromising the integrity and availability of the application. It is crucial for users to upgrade to the latest version to mitigate this risk and protect their sensitive data.","Zoom Video Communications, Inc.",Zoom Sdk's,8.1,HIGH,0.0009699999936856329,false,,false,false,false,,,false,false,,2023-08-08T22:15:00.000Z,0
CVE-2023-36534,https://securityvulnerability.io/vulnerability/CVE-2023-36534,Path Traversal Vulnerability in Zoom Desktop Client for Windows,"The Zoom Desktop Client for Windows is susceptible to a path traversal vulnerability that can be exploited by unauthenticated users. This flaw allows attackers to gain escalated privileges through network access, posing potential risks to user security. Users are advised to upgrade to version 5.14.7 or later to mitigate any possible threats associated with this vulnerability.","Zoom Video Communications, Inc.",Zoom Desktop Client For Windows,9.3,CRITICAL,0.001829999964684248,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-36533,https://securityvulnerability.io/vulnerability/CVE-2023-36533,Uncontrolled Resource Consumption Vulnerability in Zoom SDKs,"An uncontrolled resource consumption vulnerability exists in Zoom SDKs that can be exploited by an unauthenticated user. This weakness allows an attacker to initiate a denial of service attack through network access, potentially leading to disruption of services. It is crucial for developers utilizing these SDKs to update to version 5.14.7 or later to mitigate this risk and ensure application reliability.","Zoom Video Communications, Inc.",Zoom Sdk's,7.1,HIGH,0.0009500000160187483,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-39216,https://securityvulnerability.io/vulnerability/CVE-2023-39216,Privilege Escalation Vulnerability in Zoom Desktop Client for Windows,An improper input validation flaw in the Zoom Desktop Client for Windows versions prior to 5.14.7 poses a risk by potentially allowing an unauthenticated user to exploit network access for privilege escalation. This vulnerability emphasizes the importance of securing user input to prevent unauthorized privilege gains.,"Zoom Video Communications, Inc.",Zoom Desktop Client For Windows,9.6,CRITICAL,0.0020000000949949026,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-36535,https://securityvulnerability.io/vulnerability/CVE-2023-36535,Client-Side Security Vulnerability in Zoom Clients,"A security flaw in the Zoom client prior to version 5.14.10 permits authenticated users to unintentionally expose confidential information through network access. This vulnerability showcases inadequate client-side enforcement of server-side security protocols, raising concerns about the integrity of user data transmitted via the application. Users of affected versions are advised to update to the latest version to safeguard their information.","Zoom Video Communications, Inc.",Zoom Clients,7.1,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-36541,https://securityvulnerability.io/vulnerability/CVE-2023-36541,Privilege Escalation Vulnerability in Zoom Desktop Client for Windows,"The Zoom Desktop Client for Windows contains a vulnerability that arises from insufficient verification of data authenticity. This flaw enables an authenticated user to potentially escalate privileges through network access, allowing them to perform actions that they are normally restricted from executing. It is essential that users upgrade to the latest version 5.14.5 or higher to safeguard against this issue and ensure the integrity of their systems.","Zoom Video Communications, Inc.",Zoom Desktop Client For Windows,8,HIGH,0.0009299999801442027,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-36540,https://securityvulnerability.io/vulnerability/CVE-2023-36540,Privilege Escalation Flaw in Zoom Desktop Client for Windows,"A vulnerability has been identified in the installer for the Zoom Desktop Client for Windows, permitting an authenticated user to exploit an untrusted search path. This may lead to an escalation of privileges, allowing the user to execute unauthorized actions within the system. Users of the affected versions are advised to update promptly to mitigate potential security risks.","Zoom Video Communications, Inc.",Zoom Desktop Client For Windows,7.3,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-08-08T18:15:00.000Z,0
CVE-2023-34119,https://securityvulnerability.io/vulnerability/CVE-2023-34119,Insecure File Handling in Zoom Rooms for Windows by Zoom,"The installer for Zoom Rooms for Windows prior to version 5.15.0 contains an insecure temporary file issue that allows authenticated users to exploit local access. This vulnerability enables an escalation of privileges, potentially compromising system security. Maintaining updated software is essential to mitigate risks associated with this type of vulnerability.","Zoom Video Communications, Inc.",Zoom Rooms For Windows,8.2,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-07-11T18:15:00.000Z,0
CVE-2023-34118,https://securityvulnerability.io/vulnerability/CVE-2023-34118,Privilege Escalation in Zoom Rooms for Windows by Zoom,"The vulnerability in Zoom Rooms for Windows arises from improper privilege management. Authenticated users with local access can exploit this flaw to escalate privileges, potentially compromising the security of the system. It is crucial for users to update to version 5.14.5 or later to mitigate this issue. For more information, please refer to the security bulletin from Zoom.","Zoom Video Communications, Inc.",Zoom Rooms For Windows,7.3,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-07-11T18:15:00.000Z,0
CVE-2023-36538,https://securityvulnerability.io/vulnerability/CVE-2023-36538,Improper Access Control Vulnerability in Zoom Rooms for Windows,"An improper access control vulnerability exists in Zoom Rooms for Windows versions prior to 5.15.0. This issue permits authenticated users to escalate their privileges through local access, potentially allowing unauthorized actions within the application. It is crucial for users to update to the latest version to mitigate this security risk and protect sensitive information.","Zoom Video Communications, Inc.",Zoom Rooms For Windows,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-07-11T18:15:00.000Z,0