Zoom On-Premise Meeting Connector Zone Controller (ZC) before version 4.8.20220419.112 fails to properly parse STUN error codes, which can result in memory corruption and could allow a malicious actor to crash the application. In versions older than 4.8.12.20211115, this vulnerability could also be leveraged to execute arbitrary code.
References
Link | Resource |
---|---|
https://explore.zoom.us/en/trust/security/security-bulletin/ | Vendor Advisory |
Configurations
History
18 Aug 2022, 18:37
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:zoom:meeting_connector:*:*:*:*:*:*:*:* | |
References | (MISC) https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory | |
CWE | CWE-787 |
11 Aug 2022, 15:29
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-11 15:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-28750
Mitre link : CVE-2022-28750
CVE.ORG link : CVE-2022-28750
JSON object : View
Products Affected
zoom
- meeting_connector