Zoom : Security Vulnerabilities, CVEs, (Memory corruption) CVSS score >= 4
Zoom On-Premise Meeting Connector Zone Controller (ZC) before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be leveraged to execute arbitrary code.
Max CVSS
9.8
EPSS Score
0.23%
Published
2022-08-11
Updated
2022-08-18
Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.
Max CVSS
7.5
EPSS Score
0.05%
Published
2023-08-08
Updated
2023-08-11
2 vulnerabilities found