Virtual desktop infrastructure

This hub aggregates every CVE we track for Virtual desktop infrastructure, a product in the communications space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Virtual desktop infrastructure.

• CVE-2024-27243Zoom Apps - Buffer Overflow6.5May 15, 2024
• CVE-2023-49647Zoom Desktop Client for Windows - Improper Access Control8.8Jan 12, 2024
• CVE-2023-49646Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access.6.4Dec 13, 2023
• CVE-2023-43586Path traversal in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows may allow an authenticated user to conduct an escalation of privilege via network access.7.3Dec 13, 2023
• CVE-2023-43582Improper authorization in some Zoom clients may allow an authorized user to conduct an escalation of privilege via network access.5.5Nov 14, 2023
• CVE-2023-43588Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access.3.5Nov 14, 2023
• CVE-2023-39199Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access.4.9Nov 14, 2023
• CVE-2023-39206Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.3.7Nov 14, 2023
• CVE-2023-39205Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of service via network access.4.3Nov 14, 2023
• CVE-2023-39204Buffer overflow in some Zoom clients may allow an unauthenticated user to conduct a denial of service via network access.4.3Nov 14, 2023
• CVE-2023-39203Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI Client may allow an unauthenticated user to conduct a disclosure of information via network access.4.3Nov 14, 2023
• CVE-2023-39202Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.3.1Nov 14, 2023
• CVE-2023-39215Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.7.1Sep 12, 2023
• CVE-2023-39213Improper neutralization of special elements in Zoom Desktop Client for Windows and Zoom VDI Client before 5.15.2 may allow an unauthenticated user to enable an escalation of privilege via network a...9.6Aug 8, 2023
• CVE-2023-39218Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a privileged user to enable information disclosure via network access.6.1Aug 8, 2023