Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged user could exploit this vulnerability to run arbitrary code in the context of the Zoom client.
References
Link | Resource |
---|---|
https://explore.zoom.us/en/trust/security/security-bulletin/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Zoom
Published: 2022-11-15T00:00:00
Updated: 2022-11-17T00:00:00
Reserved: 2022-04-06T00:00:00
Link: CVE-2022-28766
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-11-17T23:15:15.007
Modified: 2022-11-22T16:14:12.610
Link: CVE-2022-28766
JSON object: View
Redhat Information
No data.