RSS   Vulnerabilities for 'Zoom client for meetings'   RSS

2021-11-11
 
CVE-2021-34419

CWE-74
 

 
In the Zoom Client for Meetings for Ubuntu Linux before version 5.1.0, there is an HTML injection flaw when sending a remote control request to a user in the process of in-meeting screen sharing. This could allow meeting participants to be targeted for social engineering attacks.

 
 
CVE-2021-34420

CWE-347
 

 
The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. This could lead to a malicious actor installing malicious software on a customer's computer.

 

 >>> Vendor: ZOOM 29 Products
Model 5560 x3 ethernet adsl modem
Zoom cloud meetings
ZOOM
Client
Meetings
Sharing service
Call recording
Zoom client for meetings
Zoom on-premise meeting connector controller
Zoom on-premise meeting connector mmr
Zoom on-premise recording connector
Zoom on-premise virtual room connector
Zoom on-premise virtual room connector load balancer
Meetings for chrome os
Virtual desktop infrastructure
Android meeting sdk
Iphone os meeting sdk
Macos meeting sdk
Windows meeting sdk
Android video sdk
Iphone os video sdk
Macos video sdk
Windows video sdk
Hybrid mmr
Hybrid zproxy
Vdi azure virtual desktop
Vdi citrix
Vdi vmware
Vdi windows meeting client


Copyright 2022, cxsecurity.com

 

Back to Top