Approved changes feed: RSS · Atom
cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipad_os:*:*
part: a version: * update: *
| Vendor | Zoom (f27b522e-dea8-5818-ba42-864516f1d399) |
|---|---|
| Product | Rooms (894ebd39-3d92-555f-83c4-48fdb7c82fc8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | ipad_os |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-49461 |
vulnerable | 2026-06-03 15:01:44.822621 |
Zoom Workplace Clients - Cross-site Scripting
MEDIUM (4.3)
Cross-site scripting in certain Zoom Workplace Clients may allow an unauthenticated user to conduct a denial of service via network access.
Published: 2025-09-09T21:42:05.838Z
Updated: 2025-09-10T20:24:36.497Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-49460 |
vulnerable | 2026-06-03 15:01:44.819023 |
Zoom Workplace Clients - Argument Injection
MEDIUM (4.3)
Uncontrolled resource consumption in certain Zoom Workplace Clients may allow an unauthenticated user to conduct a denial of service via network access.
Published: 2025-09-09T21:38:40.910Z
Updated: 2025-09-10T20:25:08.077Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45426 |
vulnerable | 2026-06-03 14:56:56.567983 |
Zoom Workplace Apps - Incorrect Ownership Assignment
MEDIUM (4.9)
Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access.
Published: 2025-02-25T19:39:48.596Z
Updated: 2025-02-26T16:49:25.061Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45425 |
vulnerable | 2026-06-03 14:56:56.561971 |
Zoom Workplace Apps - Incorrect User Management
MEDIUM (4.9)
Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access.
Published: 2025-02-25T19:38:02.925Z
Updated: 2025-02-26T16:57:20.637Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45424 |
vulnerable | 2026-06-03 14:56:56.561167 |
Zoom Workplace Apps - Business Logic Error
MEDIUM (5.3)
Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access.
Published: 2025-02-25T19:34:24.811Z
Updated: 2025-02-25T19:39:53.249Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-45421 |
vulnerable | 2026-06-03 14:56:56.550917 |
Zoom Apps - Buffer Overflow
HIGH (8.5)
Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of privilege via network access.
Published: 2025-02-25T19:55:02.666Z
Updated: 2025-02-25T20:09:12.193Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43582 |
vulnerable | 2026-06-03 14:53:04.314251 |
Details available
MEDIUM (5.5)
Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.
Published: 2023-11-14T23:12:32.799Z
Updated: 2024-09-19T13:52:36.217Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-39218 |
vulnerable | 2026-06-03 14:52:37.944912 |
Details available
MEDIUM (6.1)
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access.
Published: 2023-08-08T17:54:59.577Z
Updated: 2024-10-10T16:20:58.392Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-39214 |
vulnerable | 2026-06-03 14:52:37.938832 |
Details available
HIGH (7.6)
Exposure of sensitive information in Zoom Client SDK's before 5.15.5 may allow an authenticated user to enable a denial of service via network access.
Published: 2023-08-08T21:38:25.554Z
Updated: 2024-09-27T19:07:24.020Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-39206 |
vulnerable | 2026-06-03 14:52:37.922130 |
Details available
LOW (3.7)
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Published: 2023-11-14T23:02:41.332Z
Updated: 2024-08-29T15:45:07.488Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-39204 |
vulnerable | 2026-06-03 14:52:37.916325 |
Details available
MEDIUM (4.3)
Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.
Published: 2023-11-14T22:28:44.622Z
Updated: 2024-08-29T15:20:45.432Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-39199 |
vulnerable | 2026-06-03 14:52:37.905447 |
Details available
MEDIUM (4.9)
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.
Published: 2023-11-14T23:06:21.805Z
Updated: 2024-09-19T13:50:58.529Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-36535 |
vulnerable | 2026-06-03 14:52:26.596213 |
Details available
HIGH (7.1)
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network access.
Published: 2023-08-08T17:39:51.259Z
Updated: 2024-10-08T15:03:49.453Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-36532 |
vulnerable | 2026-06-03 14:52:26.579042 |
Details available
MEDIUM (5.9)
Buffer overflow in Zoom Clients before 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.
Published: 2023-08-08T17:30:58.217Z
Updated: 2024-10-09T16:25:28.757Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.