Multiple vulnerabilities in Zoom

Descripción

Multiple vulnerabilities were found in Zoom. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Insufficient hostname validation vulnerability can be exploited remotely to gain privileges.
2. Security vulnerability can be exploited to bypass security restrictions.
3. Improperly constrained session cookies vulnerability can be exploited remotely to gain privileges.
4. Improper XML Parsing can be exploited remotely to execute arbitrary code.

Notas informativas originales

• Zoom Security Bulletin

Explotación

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Productos relacionados

• Zoom-MSI

Lista CVE

• CVE-2022-22787
  critical
• CVE-2022-22786
  critical
• CVE-2022-22785
  critical
• CVE-2022-22784
  critical

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com