Security Advisory

CVE-2022-22787

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-18 16:03:18

Last updated 2024-09-17 04:14:00

Assigner Zoom

State PUBLISHED

Description

The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.10.0 fails to properly validate the hostname during a server switch request. This issue could be used in a more sophisticated attack to trick an unsuspecting users client to connect to a malicious server when attempting to use Zoom services.

← Browse all CVEs View on cve.org ↗