Skip to main content

Zoom Client For Meetings

2 CVEs product

Monthly

CVE-2021-34420 HIGH This Week

The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Jwt Attack Zoom Client For Meetings
NVD
CVSS 3.1
7.4
EPSS
0.4%
CVE-2021-34419 MEDIUM This Month

In the Zoom Client for Meetings for Ubuntu Linux before version 5.1.0, there is an HTML injection flaw when sending a remote control request to a user in the process of in-meeting screen sharing. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubuntu Code Injection Zoom Client For Meetings
NVD
CVSS 3.1
5.3
EPSS
0.6%
EPSS 0% CVSS 7.4
HIGH This Week

The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Jwt Attack +1
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

In the Zoom Client for Meetings for Ubuntu Linux before version 5.1.0, there is an HTML injection flaw when sending a remote control request to a user in the process of in-meeting screen sharing. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubuntu Code Injection Zoom Client For Meetings
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy