Page 2 of 56 results (0.006 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-39824 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure

https://notcve.org/view.php?id=CVE-2024-39824

14 Aug 2024 — Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24030 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-39823 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure

https://notcve.org/view.php?id=CVE-2024-39823

14 Aug 2024 — Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24030 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-39822 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure

https://notcve.org/view.php?id=CVE-2024-39822

14 Aug 2024 — Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24029 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-39825 – Zoom Workplace Apps and Rooms Clients - Buffer Overflow

https://notcve.org/view.php?id=CVE-2024-39825

14 Aug 2024 — Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24022 • CWE-122: Heap-based Buffer Overflow •

CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-39821 – Zoom Workplace App for Windows and Zoom Rooms App for Windows - Race Condition

https://notcve.org/view.php?id=CVE-2024-39821

15 Jul 2024 — Race condition in the installer for Zoom Workplace App for Windows and Zoom Rooms App for Windows may allow an authenticated user to conduct a denial of service via local access. La condición de ejecución en el instalador de la aplicación Zoom Workplace para Windows y la aplicación Zoom Rooms para Windows puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local. • https://www.zoom.com/en/trust/security-bulletin/zsb-24028 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-24693 – Zoom Rooms Client for Windows - Improper Access Control

https://notcve.org/view.php?id=CVE-2024-24693

13 Mar 2024 — Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. Un control de acceso inadecuado en el instalador de Zoom Rooms Client para Windows anterior a la versión 5.17.5 puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local. • https://www.zoom.com/en/trust/security-bulletin/zsb-24009 • CWE-284: Improper Access Control CWE-379: Creation of Temporary File in Directory with Insecure Permissions •

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2024-24692 – Zoom Rooms Client for Windows - Race Condition

https://notcve.org/view.php?id=CVE-2024-24692

13 Mar 2024 — Race condition in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. La condición de ejecución en el instalador de Zoom Rooms Client para Windows anterior a la versión 5.17.5 puede permitir que un usuario autenticado realice una denegación de servicio a través del acceso local. • https://www.zoom.com/en/trust/security-bulletin/zsb-24009 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-43591

https://notcve.org/view.php?id=CVE-2023-43591

14 Nov 2023 — Improper privilege management in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access. Una gestión inadecuada de privilegios en Zoom Rooms para macOS anterior a la versión 5.16.0 puede permitir que un usuario autenticado realice una escalada de privilegios a través del acceso local. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-269: Improper Privilege Management CWE-280: Improper Handling of Insufficient Permissions or Privileges •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-43590

https://notcve.org/view.php?id=CVE-2023-43590

14 Nov 2023 — Link following in Zoom Rooms for macOS before version 5.16.0 may allow an authenticated user to conduct an escalation of privilege via local access. El seguimiento de enlaces en Zoom Rooms para macOS anteriores a la versión 5.16.0 puede permitir que un usuario autenticado realice una escalada de privilegios a través del acceso local. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 9.0EPSS: 0%CPEs: 16EXPL: 0

CVE-2023-43582

https://notcve.org/view.php?id=CVE-2023-43582

14 Nov 2023 — Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access. La autorización inadecuada en algunos clientes de Zoom puede permitir que un usuario autorizado realice una escalada de privilegios a través del acceso a la red. • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-287: Improper Authentication CWE-939: Improper Authorization in Handler for Custom URL Scheme •