📦 Workplace Virtual Desktop Infrastructure

This vulnerability allows an unauthenticated attacker on the same network to escalate privileges on Windows systems running vulnerable Zoom clients. Attackers can exploit an untrusted search path issu...

This vulnerability allows an authenticated user with local access to escalate privileges on Windows systems running the Zoom Workplace VDI Client. The installer fails to properly verify cryptographic ...

A time-of-check time-of-use race condition vulnerability in Zoom Workplace Apps allows authenticated local users to escalate privileges. This affects users running vulnerable versions of Zoom Workplac...

This CVE describes a use-after-free vulnerability in Zoom Workplace Apps that allows authenticated users to escalate privileges through network access. The vulnerability affects users of Zoom Workplac...

A buffer overflow vulnerability in some Zoom Apps allows authenticated users to escalate privileges through network access. This affects Zoom Apps users who have network connectivity to vulnerable sys...

An improper input validation vulnerability in certain Zoom Apps allows unauthenticated attackers to access sensitive information via network access. This affects Zoom Apps that haven't been updated to...

A buffer overflow vulnerability in Zoom Workplace Apps and Rooms Clients allows authenticated users to escalate privileges through network access. This affects organizations using Zoom's workplace col...

This CVE describes a protection mechanism failure in some Zoom Workplace Apps and SDKs that allows authenticated users to access sensitive information via network connections. The vulnerability enable...

This vulnerability allows authenticated Windows users with local access to escalate privileges through improper input validation in Zoom Apps installers. Attackers could gain elevated system permissio...

This vulnerability in Zoom Clients allows unauthenticated attackers to control file paths, potentially leading to information disclosure via network access. It affects Zoom users running vulnerable cl...

This vulnerability in Zoom Workplace VDI Plugin macOS Universal installer allows authenticated users to follow symbolic links during installation, potentially leading to information disclosure via net...

This vulnerability in Zoom Clients involves improper certificate validation that could allow an unauthenticated attacker on the same network to potentially access sensitive information. It affects Zoo...

This vulnerability in Zoom Clients allows unauthenticated attackers to access sensitive information through network access due to improper data removal. It affects Zoom Client users running versions b...

This CVE describes a command injection vulnerability in Zoom Clients for Windows that allows authenticated users to execute arbitrary commands, potentially leading to information disclosure. The vulne...

This vulnerability in Zoom Workplace Clients for Windows allows unauthenticated attackers to access sensitive information through network connections. It affects Windows users running vulnerable versi...

A cross-site scripting vulnerability in certain Zoom Workplace Clients allows unauthenticated attackers to conduct denial of service attacks via network access. This affects users running vulnerable v...

This CVE describes an incorrect authorization vulnerability in Zoom Workplace Clients for Windows that allows authenticated users to potentially modify data or settings via network access. The vulnera...

A race condition vulnerability in Zoom Client for Windows installers could allow an unauthenticated local attacker to compromise application integrity during installation. This affects users installin...

A buffer over-read vulnerability in Zoom Workplace Apps for Windows allows authenticated users to cause denial of service through network access. This affects Zoom Workplace users on Windows systems w...

A NULL pointer dereference vulnerability in Zoom Workplace Apps for Windows allows authenticated users to cause a denial of service through network access. This affects Zoom Workplace users on Windows...

A NULL pointer dereference vulnerability in Zoom Workplace Apps for Windows allows authenticated users to cause denial of service through network access. This affects Zoom Workplace users on Windows s...

A null pointer dereference vulnerability in Zoom Workplace Apps for Windows allows authenticated users to cause denial of service through network access. This affects users running vulnerable versions...

This cross-site scripting (XSS) vulnerability in Zoom Workplace Apps allows an unauthenticated attacker on the same network to inject malicious scripts into web pages. The vulnerability enables integr...

This vulnerability in Zoom Workplace Apps allows unprivileged users to cause denial of service attacks by exploiting insufficient data authenticity verification. Attackers can disrupt Zoom services vi...

A use-after-free vulnerability in Zoom Workplace Apps and SDKs allows authenticated users to cause denial of service through network access. This affects users of vulnerable Zoom applications who have...

A use-after-free vulnerability in Zoom Workplace Apps and SDKs allows authenticated users to cause denial of service through network access. This affects users of vulnerable Zoom applications who have...

A business logic error in certain Zoom Workplace applications allows unauthenticated attackers to access sensitive information via network access. This affects organizations using vulnerable Zoom Work...

This vulnerability in Zoom Workplace Apps allows privileged users to access information they shouldn't have permission to view through incorrect ownership assignment. It affects organizations using Zo...

This CVE describes a local privilege escalation vulnerability in Zoom Workplace Apps for Windows installers. An authorized user with local access can exploit an untrusted search path to gain elevated ...

A buffer overflow vulnerability in Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers allows authenticated users to cause denial of service via network access. This affects organizations ...

This vulnerability allows privileged users within Zoom Workplace environments to access sensitive information through network connections. It affects Zoom Workplace Apps, SDKs, Rooms Clients, and Room...

This CVE describes a missing authorization vulnerability in Zoom Workplace components that could allow privileged users to access sensitive information they shouldn't have permission to view. The vuln...

A race condition vulnerability in Zoom Workplace Team Chat for Windows allows authenticated users to potentially access sensitive information through network access. This affects Zoom Workplace apps a...

This vulnerability in Zoom Workplace VDI App for Windows allows authenticated local users to escalate privileges due to insufficient verification of data authenticity in the installer. Attackers could...