Zoom desktop client
This hub aggregates every CVE we track for Zoom desktop client, a product in the communications space. Use it to gauge the current risk picture and drill into individual advisories.
20
CVEs tracked
2
Critical
6
High
0
In CISA KEV
Severity distribution
MEDIUM10HIGH6LOW2CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Zoom desktop client.
- CVE-2024-24691Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation9.6
- CVE-2024-24690Zoom Clients - Improper Input Validation5.4
- CVE-2024-24699Zoom Clients - Business Logic Error6.5
- CVE-2024-24698Zoom Clients - Improper Authentication4.9
- CVE-2024-24697Zoom Clients - Untrusted Search Path7.2
- CVE-2024-24696Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation6.8
- CVE-2024-24695 Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation6.8
- CVE-2023-43582Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.5.5
- CVE-2023-43588Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.3.5
- CVE-2023-39199Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.4.9
- CVE-2023-39206Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.3.7
- CVE-2023-39205Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.4.3
- CVE-2023-39204Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.4.3
- CVE-2023-39208Improper input validation in Zoom Desktop Client for Linux before version 5.15.10 may allow an unauthenticated user to conduct a denial of service via network access.6.5
- CVE-2023-39215Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.7.1
Product normalization is registry-driven with AI assist and human review. How it works