Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Zoom Video Communications Inc — Vulnerabilities & Security Advisories 52

Browse all 52 CVE security advisories affecting Zoom Video Communications Inc. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Zoom Video Communications Inc operates a cloud-based video conferencing platform that facilitates remote communication for businesses and individuals. With 52 recorded CVEs, its historical vulnerability landscape has predominantly featured remote code execution (RCE) and cross-site scripting (XSS) flaws, often stemming from improper input validation in its client applications or web interfaces. Privilege escalation vulnerabilities have also been documented, allowing unauthorized access to sensitive meeting data or system resources. Notable incidents include the "Zoombombing" phenomenon, which highlighted significant privacy and access control weaknesses in early versions, prompting extensive security overhauls. While Zoom has since implemented end-to-end encryption and enhanced authentication measures, the persistent presence of RCE vulnerabilities in its desktop clients remains a critical concern for enterprise security teams, necessitating rigorous patch management and configuration audits to mitigate potential exploitation risks.

Top products by Zoom Video Communications Inc: Zoom On-Premise Meeting Connector MMR Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) Zoom Client for Meetings for Android Zoom Client for Meetings for MacOS Zoom Rooms for macOS Zoom Client for Meetings for Windows Zoom On-Premise Meeting Connector Controller Zoom (for Android, iOS, Linux, macOS, and Windows) clients before version 5.13.5 Zoom Rooms for Windows Keybase Client for Windows Zoom Client for Meetings for MacOS (Standard and for IT Admin) Zoom Rooms Installer for Windows Zoom (for Android, iOS, Linux, macOS, and Windows) Zoom Client for Meetings for IT Admin macOS installers Zoom Client for Meetings for IT Admin Windows installers Zoom for Windows Zoom On-Premise Meeting Connector Zoom for Android Zoom Client for Meetings for Ubuntu Linux Keybase Client for macOS Zoom Client for Meetings Installer for macOS (Standard and for IT Admin) Zoom Client for Meetings for Windows (32-bit) Keybase Client for Android Zoom Room for Conference Room for Windows Zoom On-Premise Meeting Connector Zone Controller (ZC) On-Premise Meeting Connectors Zoom Client for Meetings
CVE IDTitleCVSSSeverityPublished
CVE-2023-28597 Improper trust boundary implementation for SMB in Zoom Clients — Zoom (for Android, iOS, Linux, macOS, and Windows)CWE-501 8.3 High2023-03-27
CVE-2023-28596 Local Privilege Escalation in Zoom for macOS Installers — Zoom Client for Meetings for IT Admin macOS installersCWE-427 7.8 High2023-03-27
CVE-2023-22883 Local Privilege Escalation in Zoom for Windows Installers — Zoom Client for Meetings for IT Admin Windows installersCWE-367 7.2 High2023-03-16
CVE-2023-22882 Denial of Service in Zoom Clients — Zoom (for Android, iOS, Linux, macOS, and Windows) clients before version 5.13.5CWE-119 6.5 Medium2023-03-16
CVE-2023-22881 Denial of Service in Zoom Clients — Zoom (for Android, iOS, Linux, macOS, and Windows) clients before version 5.13.5CWE-119 6.5 Medium2023-03-16
CVE-2023-22880 Information Disclosure in Zoom for Windows Clients — Zoom for WindowsCWE-200 6.8 Medium2023-03-16
CVE-2022-36930 Local Privilege Escalation in Zoom Rooms for Windows Installers — Zoom Rooms for WindowsCWE-427 8.8 High2023-01-09
CVE-2022-36929 Local Privilege Escalation in Zoom Rooms for Windows Clients — Zoom Rooms for WindowsCWE-367 7.8 High2023-01-09
CVE-2022-36928 Path Traversal in Zoom for Android Clients — Zoom for AndroidCWE-35 6.1 Medium2023-01-09
CVE-2022-36927 Local Privilege Escalation in Zoom Rooms for macOS Clients — Zoom Rooms for macOSCWE-367 8.8 High2023-01-09
CVE-2022-36926 Local Privilege Escalation in Zoom Rooms for macOS Clients — Zoom Rooms for macOSCWE-78 8.8 High2023-01-09
CVE-2022-36925 Insecure key generation for Zoom Rooms for macOS Clients — Zoom Rooms for macOSCWE-321 4.4 Medium2023-01-09
CVE-2022-36924 Local Privilege Escalation in Zoom Rooms Installer for Windows — Zoom Rooms Installer for WindowsCWE-427 8.8 High2022-11-17
CVE-2022-28766 DLL injection in Zoom Windows Clients — Zoom Client for Meetings for Windows (32-bit)CWE-94 3.3 Low2022-11-17
CVE-2022-28768 Local Privilege Escalation in Zoom Client Installer for macOS — Zoom Client for Meetings Installer for macOS (Standard and for IT Admin)CWE-689 8.8 High2022-11-17
CVE-2022-28764 Local information exposure in Zoom Clients — Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)CWE-200 3.3 Low2022-11-14
CVE-2022-28763 Improper URL parsing in Zoom Clients — Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)CWE-20 8.8 High2022-10-31
CVE-2022-28761 Zoom On-Premise Deployments: Improper Access Control — Zoom On-Premise Meeting Connector MMRCWE-284 6.5 Medium2022-10-14
CVE-2022-28759 Zoom On-Premise Deployments: Improper Access Control — Zoom On-Premise Meeting Connector MMRCWE-284 8.2 High2022-10-14
CVE-2022-28760 Zoom On-Premise Deployments: Improper Access Control — Zoom On-Premise Meeting Connector MMRCWE-284 6.5 Medium2022-10-14
CVE-2022-28762 Debugging port misconfiguration in Zoom Apps in the Zoom Client for Meetings for macOS — Zoom Client for Meetings for MacOSCWE-16 7.3 High2022-10-14
CVE-2022-28758 Zoom On-Premise Deployments: Improper Access Control — Zoom On-Premise Meeting Connector MMRCWE-284 8.2 High2022-09-16
CVE-2022-28757 Local Privilege Escalation in Auto Updater for Zoom Client for Meetings for macOS — Zoom Client for Meetings for MacOSCWE-345 8.8 High2022-08-18
CVE-2022-28752 Local Privilege Escalation in the Zoom Rooms for Windows Client — Zoom Room for Conference Room for WindowsCWE-347 8.8 High2022-08-17
CVE-2022-28751 Local Privilege Escalation in Zoom Client for Meetings for MacOS — Zoom Client for Meetings for MacOSCWE-347 8.8 High2022-08-17
CVE-2022-28756 Local Privilege Escalation in Auto Updater for Zoom Client for Meetings for macOS — Zoom Client for Meetings for MacOSCWE-347 8.8 High2022-08-15
CVE-2022-28755 Improper URL parsing in Zoom Clients — Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)CWE-20 9.6 Critical2022-08-11
CVE-2022-28753 Zoom On-Premise Deployments: Improper Access Control Vulnerability — Zoom On-Premise Meeting Connector MMRCWE-284 7.1 High2022-08-11
CVE-2022-28750 Zoom On-Premise Deployments: Stack Buffer Overflow in Meeting Connector — Zoom On-Premise Meeting Connector Zone Controller (ZC)CWE-121 7.5 High2022-08-11
CVE-2022-28754 Zoom On-Premise Deployments: Improper Access Control Vulnerability — Zoom On-Premise Meeting Connector MMRCWE-284 7.1 High2022-08-11

This page lists every published CVE security advisory associated with Zoom Video Communications Inc. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.