Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2022-28766

Windows 32-bit versions of the Zoom Client for Meetings before 5.12.6 and Zoom Rooms for Conference Room before version 5.12.6 are susceptible to a DLL injection vulnerability. A local low-privileged user could exploit this vulnerability to run arbitrary code in the context of the Zoom client.

  • Published: Nov 18, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-28766
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.3
  • AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWEs:

Software From Fixed in
zoom / rooms - 5.12.6
zoom / meetings - 5.12.6