Zoom 4.6.10
Approved changes feed: RSS · Atom
cpe:2.3:a:zoom:zoom:4.6.10:*:*:*:*:*:*:*
part: a version: 4.6.10 update: *
| Vendor | Zoom (f27b522e-dea8-5818-ba42-864516f1d399) |
|---|---|
| Product | Zoom (65336b43-33f0-59ce-95e1-d1d9193f3816) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-6110 |
vulnerable | 2026-06-03 14:42:57.973065 |
Details available
HIGH (8)
An exploitable partial path traversal vulnerability exists in the way Zoom Client version 4.6.10 processes messages including shared code snippets. A specially crafted chat message can cause an arbitrary binary planting which could be abused to achieve arbitrary code execution. An attacker needs to send a specially crafted message to a target user or a group to trigger this vulnerability. For the most severe effect, target user interaction is required.
Published: 2020-06-08T13:22:34.000Z
Updated: 2024-08-04T08:47:41.068Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-6109 |
vulnerable | 2026-06-03 14:42:57.972622 |
Details available
HIGH (8.5)
An exploitable path traversal vulnerability exists in the Zoom client, version 4.6.10 processes messages including animated GIFs. A specially crafted chat message can cause an arbitrary file write, which could potentially be abused to achieve arbitrary code execution. An attacker needs to send a specially crafted message to a target user or a group to exploit this vulnerability.
Published: 2020-06-08T13:22:31.000Z
Updated: 2024-08-04T08:47:41.110Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.