CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-28761 – Zoom On-Premise Deployments: Improper Access Control
https://notcve.org/view.php?id=CVE-2022-28761
Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting disruptions. Zoom On-Premise Meeting Connector MMR versiones anteriores a 4.8.20220916.131, contiene una vulnerabilidad de control de acceso inapropiado. Como resultado, un actor malicioso en una reunión o seminario web al que está autorizado a unirse podría impedir que los participantes reciban audio y vídeo causando interrupciones en la reunión • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-284: Improper Access Control •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-28759 – Zoom On-Premise Deployments: Improper Access Control
https://notcve.org/view.php?id=CVE-2022-28759
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions. Zoom On-Premise Meeting Connector MMR versiones anteriores a 4.8.20220815.130, contiene una vulnerabilidad de control de acceso inapropiado. Como resultado, un actor malicioso podría obtener la transmisión de audio y vídeo de una reunión a la que no estuviera autorizado a unirse y causar otras interrupciones en la reunión • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-284: Improper Access Control •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-28760 – Zoom On-Premise Deployments: Improper Access Control
https://notcve.org/view.php?id=CVE-2022-28760
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions. Zoom On-Premise Meeting Connector MMR versiones anteriores a 4.8.20220815.130, contiene una vulnerabilidad de control de acceso inapropiado. Como resultado, un actor malicioso podría obtener la transmisión de audio y vídeo de una reunión a la que no estaba autorizado a unirse y causar otras interrupciones en la reunión • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-284: Improper Access Control •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2022-28758 – Zoom On-Premise Deployments: Improper Access Control
https://notcve.org/view.php?id=CVE-2022-28758
Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions. Zoom On-Premise Meeting Connector MMR versiones anteriores a 4.8.20220815.130, contiene una vulnerabilidad de control de acceso inapropiada. Como resultado, un actor malicioso podría obtener la transmisión de audio y vídeo de una reunión a la que no estaba autorizado a unirse y causar otras interrupciones en la reunión • https://explore.zoom.us/en/trust/security/security-bulletin • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22783 – Process memory exposure in Zoom on-premise Meeting services
https://notcve.org/view.php?id=CVE-2022-22783
A vulnerability in Zoom On-Premise Meeting Connector Controller version 4.8.102.20220310 and On-Premise Meeting Connector MMR version 4.8.102.20220310 exposes process memory fragments to connected clients, which could be observed by a passive attacker. Una vulnerabilidad en Zoom On-Premise Meeting Connector Controller versión 4.8.102.20220310 y On-Premise Meeting Connector MMR versión 4.8.102.20220310, expone fragmentos de memoria de proceso a clientes conectados, que podrían ser observados por un atacante pasivo • https://explore.zoom.us/en/trust/security/security-bulletin •