Zoom does not provide guidance on vulnerability impacts to individual customers due to a Zoom Security Bulletin or provide additional details about a vulnerability. We recommend users to update to the latest version of Zoom software in order to get the latest fixes and security improvements.
Security Bulletins
ZSB | Title | Severity | CVE | Date Published | Date Updated |
---|---|---|---|---|---|
ZSB-24013 | Zoom Desktop Client for Linux - Cross Site Scripting | Low | CVE-2024-27242 | 04/09/2024 | 04/09/2024 |
ZSB-24012 | Zoom Desktop Client for macOS - Improper Privilege Management | Medium | CVE-2024-27247 | 04/09/2024 | 04/09/2024 |
ZSB-24011 | Zoom Desktop Client for Windows - Improper Privilege Management | Medium | CVE-2024-24694 | 04/09/2024 | 04/09/2024 |
ZSB-24010 | Zoom Rooms Client for Windows - Improper Access Control | High | CVE-2024-24693 | 03/12/2024 | 03/13/2024 |
ZSB-24009 | Zoom Rooms Client for Windows - Race Condition | Medium | CVE-2024-24692 | 03/12/2024 | 03/12/2024 |
ZSB-24008 | Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation | Critical | CVE-2024-24691 | 02/13/2024 | 02/13/2024 |
ZSB-24007 | Zoom Clients - Improper Input Validation | Medium | CVE-2024-24690 | 02/13/2024 | 02/13/2024 |
ZSB-24006 | Zoom Clients - Business Logic Error | Medium | CVE-2024-24699 | 02/13/2024 | 02/13/2024 |
ZSB-24005 | Zoom Clients - Improper Authentication | Medium | CVE-2024-24698 | 02/13/2024 | 02/13/2024 |
ZSB-24004 | Zoom Clients - Untrusted Search Path | High | CVE-2024-24697 | 02/13/2024 | 02/13/2024 |
ZSB-24003 | Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation | Medium | CVE-2024-24696 | 02/13/2024 | 02/13/2024 |
ZSB-24002 | Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation | Medium | CVE-2024-24695 | 02/13/2024 | 02/13/2024 |
ZSB-24001 | Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows- Improper Access Control | High | CVE-2023-49647 | 01/09/2024 | 01/09/2024 |
ZSB-23062 | Zoom Clients - Improper Authentication | Medium | CVE-2023-49646 | 12/12/2023 | 12/12/2023 |
ZSB-23059 | Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows - Path Traversal | High | CVE-2023-43586 | 12/12/2023 | 12/12/2023 |
ZSB-23058 | Zoom Mobile App for iOS and SDKs for iOS - Improper Access Control | High | CVE-2023-43585 | 12/12/2023 | 12/12/2023 |
ZSB-23056 | Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs - Cryptographic Issues | Medium | CVE-2023-43583 | 12/12/2023 | 12/12/2023 |
ZSB-23055 | Zoom Clients - Improper Authorization | Medium | CVE-2023-43582 | 11/14/2023 | 11/14/2023 |
ZSB-23054 | Zoom Rooms for macOS - Improper Privilege Management | High | CVE-2023-43591 | 11/14/2023 | 11/14/2023 |
ZSB-23053 | Zoom Rooms for macOS - Link Following | High | CVE-2023-43590 | 11/14/2023 | 11/14/2023 |
No results found.
The official text for Zoom Security Bulletins is English. Translations are provided for your convenience and Zoom does not make any promises, assurances, or guarantees as to the accuracy of these translations.