cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-45422,https://securityvulnerability.io/vulnerability/CVE-2024-45422,Unauthenticated Denial of Service Vulnerability in Zoom Apps,Improper input validation in some Zoom Apps before version 6.2.0 may allow an unauthenticated user to conduct a denial of service via network access.,Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",6.5,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-11-19T19:45:25.914Z,0
CVE-2024-45420,https://securityvulnerability.io/vulnerability/CVE-2024-45420,Zoom Apps Denial of Service Vulnerability,"An uncontrolled resource consumption vulnerability in Zoom Apps prior to version 6.2.0 allows authenticated users to exploit network access, potentially leading to denial of service. This can inadvertently impact the service performance and availability for other users, underscoring the importance of timely updates and security measures.",Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",4.3,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-11-19T19:32:02.656Z,0
CVE-2024-45419,https://securityvulnerability.io/vulnerability/CVE-2024-45419,Unauthorized Information Disclosure via Network Access,"The vulnerability results from inadequate input validation within certain Zoom Apps, potentially enabling unauthenticated users to access sensitive information through network exploitation. This can lead to unauthorized data exposure, posing a significant risk to user privacy and security. It is essential for users and administrators to ensure that they are using the latest versions of affected Zoom Apps to mitigate this risk.",Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",8.1,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-19T19:28:48.335Z,0
CVE-2024-42434,https://securityvulnerability.io/vulnerability/CVE-2024-42434,Privileged User May Discover Sensitive Information via Network Access,"Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.",Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",4.9,MEDIUM,0.0004900000058114529,false,false,false,false,,false,false,2024-08-14T17:15:00.000Z,0
CVE-2024-42441,https://securityvulnerability.io/vulnerability/CVE-2024-42441,Zoom Workplace Desktop App for macOS: Privilege Escalation Vulnerability,"Improper privilege management in the installer for Zoom Workplace Desktop App for macOS, Zoom Meeting SDK for macOS and Zoom Rooms Client for macOS before 6.1.5 may allow a privileged user to conduct an escalation of privilege via local access.",Zoom,"Zoom Workplace Desktop App For Mac OS, Zoom Meeting Sdk For Mac OS, Zoom Rooms Client For Mac OS",6.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-08-14T17:15:00.000Z,0
CVE-2024-39825,https://securityvulnerability.io/vulnerability/CVE-2024-39825,Buffer Overflow Vulnerability in Zoom Workplace Apps and Rooms Clients Allows for Escalation of Privilege,"A buffer overflow vulnerability exists in the Zoom Workplace Apps and Rooms Clients that potentially allows an authenticated user to escalate their privileges. This issue can be exploited via network access, posing significant security risks to organizations using these platforms. Users of affected products should ensure they apply security updates immediately to mitigate potential exploitation.",Zoom,Zoom Workplace Apps And Rooms Clients,8.5,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-08-14T17:15:00.000Z,0
CVE-2024-42435,https://securityvulnerability.io/vulnerability/CVE-2024-42435,Potential Sensitive Information Disclosure in Zoom Workplace Apps,"Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access.",Zoom,"Zoom Workplace Apps, Sdks, Rooms Clients, And Rooms Controllers",4.9,MEDIUM,0.0004900000058114529,false,false,false,false,,false,false,2024-08-14T17:15:00.000Z,0
CVE-2024-27242,https://securityvulnerability.io/vulnerability/CVE-2024-27242,Zoom Desktop Client for Linux vulnerable to Cross-Site Scripting Attacks,Cross site scripting in Zoom Desktop Client for Linux before version 5.17.10 may allow an authenticated user to conduct a denial of service via network access.,Zoom,Zoom Desktop Client For Linux,4.1,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-04-09T17:18:32.081Z,0
CVE-2024-27247,https://securityvulnerability.io/vulnerability/CVE-2024-27247,Privilege Escalation Vulnerability in Zoom Desktop Client for macOS,Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access.,Zoom,Zoom Desktop Client For Mac OS,5.5,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-04-09T17:15:27.531Z,0
CVE-2024-24694,https://securityvulnerability.io/vulnerability/CVE-2024-24694,Potential Escalation of Privilege via Local Access in Zoom Installer,Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access.,Zoom,Zoom Desktop Client For Windows,5.9,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-04-09T17:13:08.845Z,0
CVE-2024-24693,https://securityvulnerability.io/vulnerability/CVE-2024-24693,Zoom Rooms Client for Windows Vulnerability Could Lead to Denial of Service via Local Access,"Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.

",Zoom,Zoom Rooms Client For Windows,5.5,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-03-13T19:30:22.311Z,0
CVE-2024-24692,https://securityvulnerability.io/vulnerability/CVE-2024-24692,Zoom Rooms Client Installer Vulnerability Could Lead to Denial of Service,Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access.,Zoom,Zoom Rooms Client For Windows,4.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-03-13T19:27:30.446Z,0
CVE-2024-24699,https://securityvulnerability.io/vulnerability/CVE-2024-24699,Zoom Clients Vulnerable to Information Disclosure via Network Access,"A business logic error present in various versions of the Zoom client allows an authenticated user to potentially expose sensitive information. This vulnerability is linked to how the application handles network access, posing risks to user privacy and data security. Ensuring the implementation of security updates is crucial for all affected client versions to mitigate the risks associated with this flaw.",Zoom,"Zoom,Vdi Windows Meeting Clients,Rooms,Meeting Sdk",6.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2024-24690,https://securityvulnerability.io/vulnerability/CVE-2024-24690,Zoom Clients Vulnerable to Denial of Service Attacks via Network Access,Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access.,Zoom,"Zoom,Meeting Software Development Kit,Video Software Development Kit,Rooms,Vdi Windows Meeting Clients",6.5,MEDIUM,0.0005300000193528831,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2024-24691,https://securityvulnerability.io/vulnerability/CVE-2024-24691,Unauthenticated Escalation of Privilege Vulnerability in Zoom Desktop Client for Windows,"A security flaw in various Zoom products, specifically the Zoom Desktop Client, Zoom VDI Client, and Zoom Meeting SDK for Windows, exists due to improper input validation. This vulnerability could enable an unauthenticated user to perform an elevation of privilege attack through network access, potentially compromising sensitive information and user permissions. It is crucial for users and administrators to remain vigilant and apply any security updates provided by Zoom to mitigate this vulnerability.","Zoom Video Communications, Inc.","Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows",9.8,CRITICAL,0.0010499999625608325,false,true,false,false,,true,true,2024-02-14T00:15:00.000Z,9953
CVE-2024-24695,https://securityvulnerability.io/vulnerability/CVE-2024-24695,Improper Input Validation in Zoom Desktop Client and SDK for Windows,"An improper input validation issue in various Windows versions of the Zoom Desktop Client, Zoom VDI Client, and Zoom Meeting SDK can potentially allow an authenticated user to disclose confidential information through network access. This vulnerability may expose sensitive data inadvertently due to inadequate checks on input provided by users, stressing the importance of implementing robust security measures in software development.",Zoom,"Meeting Software Development Kit,Zoom,Vdi Windows Meeting Clients",6.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2024-24696,https://securityvulnerability.io/vulnerability/CVE-2024-24696,Improper Input Validation in Zoom Desktop Client and SDK for Windows,"An improper input validation vulnerability exists within the Zoom Desktop Client, Zoom VDI Client, and Zoom Meeting SDK for Windows. This flaw enables an authenticated user to potentially disclose sensitive information through network access, which could compromise user privacy and security. It is critical for users to stay informed about this issue and apply necessary updates to safeguard against potential exploits.",Zoom,"Zoom,Vdi Windows Meeting Clients,Meeting Software Development Kit",6.5,MEDIUM,0.0005200000014156103,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2024-24697,https://securityvulnerability.io/vulnerability/CVE-2024-24697,Untrusted Search Path Vulnerability in Zoom 32 bit Windows Clients Could Lead to Escalation of Privilege,"A vulnerability exists in the 32-bit Windows client of Zoom, stemming from an untrusted search path issue. This flaw allows an authenticated user to leverage local access for privilege escalation. It highlights the importance of ensuring proper security measures and validation of search paths within applications to mitigate potential exploitation.",Zoom,"Vdi Windows Meeting Clients,Rooms,Zoom,Meeting Sdk",7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2024-24698,https://securityvulnerability.io/vulnerability/CVE-2024-24698,Privileged User May Access Information via Local Access,Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure of information via local access.,Zoom,"Vdi Windows Meeting Clients,Zoom,Meeting Software Development Kit,Rooms",4.4,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-02-14T00:15:00.000Z,0
CVE-2023-49647,https://securityvulnerability.io/vulnerability/CVE-2023-49647,Zoom Desktop Client for Windows Vulnerability: Escalation of Privilege via Local Access,"An issue has been identified in the Zoom Desktop Client, VDI Client, and SDKs for Windows that presents an improper access control vulnerability. This flaw could enable an authenticated user to escalate privileges through local access, which may compromise the security of the affected systems. Users and organizations relying on these Zoom products should consider upgrading to versions 5.16.10 or later to mitigate the associated risks.","Zoom Video Communications, Inc.","Zoom Desktop Client For Windows, Zoom Vdi Client For Windows, And Zoom Sdks For Windows Before Version 5.16.10",7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-01-12T21:44:00.743Z,0
CVE-2023-49646,https://securityvulnerability.io/vulnerability/CVE-2023-49646,Improper Authentication in Zoom Clients Before Version 5.16.5,"An improper authentication flaw exists in specific Zoom clients prior to version 5.16.5. This vulnerability could potentially enable an authenticated user to exploit the system by orchestrating a denial of service through network access, potentially causing disruptions in service availability. Users are urged to update their Zoom clients to the latest version to mitigate this risk effectively.","Zoom Video Communications, Inc.",Zoom Clients,6.5,MEDIUM,0.0007300000288523734,false,false,false,false,,false,false,2023-12-13T23:15:00.000Z,0
CVE-2023-43586,https://securityvulnerability.io/vulnerability/CVE-2023-43586,Path Traversal Vulnerability in Zoom Desktop Client and SDKs on Windows,"A path traversal vulnerability in the Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows allows authenticated users to exploit network access for privilege escalation. Attackers may leverage this weakness to access restricted files and execute unauthorized commands, posing a significant security risk.","Zoom Video Communications, Inc.","Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows",7.3,HIGH,0.0007999999797903001,false,false,false,false,,false,false,2023-12-13T23:15:00.000Z,0
CVE-2023-43582,https://securityvulnerability.io/vulnerability/CVE-2023-43582,Improper Authorization in Zoom Clients Leading to Privilege Escalation,"An improper authorization vulnerability in various Zoom client implementations can potentially allow an authorized user to conduct privilege escalation through network access. This flaw may enable unauthorized access to more sensitive features, compromising the integrity of the user’s session and introducing considerable risks. Users are advised to update their Zoom clients to the latest versions to mitigate this issue.","Zoom Video Communications, Inc.",Zoom Clients,8.8,HIGH,0.0008900000248104334,false,false,false,false,,false,false,2023-11-15T00:15:00.000Z,0
CVE-2023-43588,https://securityvulnerability.io/vulnerability/CVE-2023-43588,Insufficient Control Flow Management in Zoom Clients,"Some Zoom clients exhibit insufficient control flow management, potentially enabling authenticated users to exploit this weakness and conduct information disclosure through network access. This poses a risk to sensitive information if not addressed through timely software updates and security measures. Users are encouraged to review the latest security updates from Zoom to mitigate this vulnerability.","Zoom Video Communications, Inc.",Zoom Clients,6.5,MEDIUM,0.0006399999838322401,false,false,false,false,,false,false,2023-11-15T00:15:00.000Z,0
CVE-2023-39203,https://securityvulnerability.io/vulnerability/CVE-2023-39203,Uncontrolled Resource Consumption in Zoom Desktop Client and VDI Client,"A vulnerability in Zoom Team Chat has been identified, which allows for uncontrolled resource consumption in both Zoom Desktop Client for Windows and Zoom VDI Client. An unauthenticated user can exploit this vulnerability via network access, potentially leading to unauthorized disclosure of information. Users should ensure they are updated with the latest security patches provided by Zoom to mitigate this risk.","Zoom Video Communications, Inc.",Zoom Rooms Client For Windows And Zoom Vdi Client,7.5,HIGH,0.000859999970998615,false,false,false,false,,false,false,2023-11-14T23:15:00.000Z,0