Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Zoom Video Communications, Inc. — Vulnerabilities & Security Advisories 65

Browse all 65 CVE security advisories affecting Zoom Video Communications, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Zoom Video Communications, Inc. provides a cloud-based platform for video conferencing, chat, and online meetings, serving millions of users globally. Historically, its software has been susceptible to several vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These issues often stemmed from improper input validation or insecure default configurations within its desktop and mobile applications. Notable incidents include the "Zoombombing" phenomenon in early 2020, where uninvited users disrupted meetings due to weak access controls, prompting significant enhancements to meeting security features. Additionally, past disclosures revealed vulnerabilities allowing unauthorized access to user data or session hijacking. The company has since implemented stricter encryption standards and improved authentication mechanisms to mitigate these risks, addressing the 65 recorded CVEs through continuous patching and security audits to maintain platform integrity.

Top products by Zoom Video Communications, Inc.: Zoom clients Zoom Desktop Client for Windows Zoom Rooms for Windows Zoom for Windows Client Zoom SDK's Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows Zoom Rooms Client for Windows and Zoom VDI Client Zoom Rooms for macOS Zoom Desktop Client for Linux Zoom Rooms Client for Windows Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows before version 5.16.10 Zoom Desktop Client for macOS Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows Zoom Mobile App for iOS and SDKs for iOS Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDK see references Zoom Workplace VDI App for Windows Zoom Client SDK for Windows CleanZoom Zoom for Android Zoom Desktop Client for Windows and Zoom Rooms for Windows Zoom Desktop Client for Windows and Zoom VDI Client Zoom Client SDK Zoom for macOS Client Zoom VDI Windows Meeting Client Zoom for Windows Zoom Meeting SDK Zoom for Linux clients
CVE IDTitleCVSSSeverityPublished
CVE-2024-27244 Zoom Workplace VDI App for Windows - Insufficient Verification of Data Authenticity — Zoom Workplace VDI App for WindowsCWE-347 6.7 Medium2024-05-15
CVE-2024-27243 Zoom Apps - Buffer Overflow — see referencesCWE-122 6.5 Medium2024-05-15
CVE-2024-27242 Zoom Desktop Client for Linux - Cross Site Scripting — Zoom Desktop Client for LinuxCWE-79 4.1 Medium2024-04-09
CVE-2024-27247 Zoom Desktop Client for macOS - Improper Privilege Management — Zoom Desktop Client for macOSCWE-347 5.5 Medium2024-04-09
CVE-2024-24694 Zoom Desktop Client for Windows - Improper Privilege Management — Zoom Desktop Client for WindowsCWE-347 5.9 Medium2024-04-09
CVE-2024-24693 Zoom Rooms Client for Windows - Improper Access Control — Zoom Rooms Client for WindowsCWE-379 7.2 High2024-03-13
CVE-2024-24692 Zoom Rooms Client for Windows - Race Condition — Zoom Rooms Client for WindowsCWE-367 5.3 Medium2024-03-13
CVE-2024-24691 Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation — Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for WindowsCWE-176 9.6 Critical2024-02-14
CVE-2024-24690 Zoom Clients - Improper Input Validation — Zoom ClientsCWE-1284 5.4 Medium2024-02-14
CVE-2024-24699 Zoom Clients - Business Logic Error — Zoom Clients 6.5 Medium2024-02-13
CVE-2024-24698 Zoom Clients - Improper Authentication — Zoom ClientsCWE-449 4.9 Medium2024-02-13
CVE-2024-24697 Zoom Clients - Untrusted Search Path — Zoom ClientsCWE-426 7.2 High2024-02-13
CVE-2024-24696 Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation — Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for WindowsCWE-20 6.8 Medium2024-02-13
CVE-2024-24695 Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation — Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for WindowsCWE-20 6.8 Medium2024-02-13
CVE-2023-49647 Zoom Desktop Client for Windows - Improper Access Control — Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows before version 5.16.10CWE-266 8.8 High2024-01-12
CVE-2023-49646 Zoom Client 安全漏洞 — Zoom ClientsCWE-347 6.4 Medium2023-12-13
CVE-2023-43586 Zoom VDI Client 安全漏洞 — Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for WindowsCWE-426 7.3 High2023-12-13
CVE-2023-43585 Zoom 安全漏洞 — Zoom Mobile App for iOS and SDKs for iOSCWE-449 7.1 High2023-12-13
CVE-2023-43583 Zoom 安全漏洞 — Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKCWE-798 4.9 Medium2023-12-13
CVE-2023-43591 Zoom Rooms 安全漏洞 — Zoom Rooms for macOSCWE-280 7.8 High2023-11-14
CVE-2023-43590 Zoom Rooms 后置链接漏洞 — Zoom Rooms for macOSCWE-59 7.8 High2023-11-14
CVE-2023-43582 Zoom Client 授权问题漏洞 — Zoom ClientsCWE-939 5.5 Medium2023-11-14
CVE-2023-43588 Zoom Client 安全漏洞 — Zoom ClientsCWE-449 3.5 Low2023-11-14
CVE-2023-39199 Zoom Client 加密问题漏洞 — Zoom ClientsCWE-325 4.9 Medium2023-11-14
CVE-2023-39206 Zoom Client 安全漏洞 — Zoom ClientsCWE-120 3.7 Low2023-11-14
CVE-2023-39205 Zoom Client 代码问题漏洞 — Zoom ClientsCWE-754 4.3 Medium2023-11-14
CVE-2023-39204 Zoom client 安全漏洞 — Zoom ClientsCWE-120 4.3 Medium2023-11-14
CVE-2023-39203 Zoom Client 资源管理错误漏洞 — Zoom Rooms Client for Windows and Zoom VDI ClientCWE-789 4.3 Medium2023-11-14
CVE-2023-39202 Zoom Rooms和Zoom VDI Client 代码问题漏洞 — Zoom Rooms Client for Windows and Zoom VDI ClientCWE-426 3.1 Low2023-11-14
CVE-2023-39201 Zoom Client 代码问题漏洞 — CleanZoomCWE-426 7.2 High2023-09-12

This page lists every published CVE security advisory associated with Zoom Video Communications, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.