CVE-2022-28763

The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://explore.zoom.us/en/trust/security/security-bulletin/	Vendor Advisory
https://explore.zoom.us/en/trust/security/security-bulletin/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zoom:meetings::::::android::*
	cpe:2.3:a:zoom:meetings::::::iphone_os::*
	cpe:2.3:a:zoom:meetings::::::linux::*
	cpe:2.3:a:zoom:meetings::::::macos::*
	cpe:2.3:a:zoom:meetings::::::windows::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::android::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::iphone_os::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::linux::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::macos::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::windows::*
	cpe:2.3:a:zoom:virtual_desktop_infrastructure::::::windows::*

History

21 Nov 2024, 06:57

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~9.6~~	v2 : unknown v3 : 8.8
References	~~() https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory~~	() https://explore.zoom.us/en/trust/security/security-bulletin/ - Vendor Advisory

Information

Published : 2022-10-31 20:15

Updated : 2024-11-21 06:57

NVD link : CVE-2022-28763

Mitre link : CVE-2022-28763

CVE.ORG link : CVE-2022-28763

JSON object : View

Products Affected

zoom

rooms_for_conference_rooms
meetings
virtual_desktop_infrastructure

CWE

CWE-20

Improper Input Validation

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

{"id": "CVE-2022-28763", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@zoom.us", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.8}]}, "published": "2022-10-31T20:15:12.650", "references": [{"url": "https://explore.zoom.us/en/trust/security/security-bulletin/", "tags": ["Vendor Advisory"], "source": "security@zoom.us"}, {"url": "https://explore.zoom.us/en/trust/security/security-bulletin/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "security@zoom.us", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-601"}]}], "descriptions": [{"lang": "en", "value": "The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers."}, {"lang": "es", "value": "El Zoom Client para Meetings (para Android, iOS, Linux, macOS y Windows) anterior a la versi\u00f3n 5.12.2 es susceptible a una vulnerabilidad de an\u00e1lisis de URL. Si se abre la URL de una reuni\u00f3n de Zoom maliciosa, el enlace malicioso puede dirigir al usuario a conectarse a una direcci\u00f3n de red arbitraria, lo que genera ataques adicionales, incluida la apropiaci\u00f3n de sesiones.\n"}], "lastModified": "2024-11-21T06:57:53.317", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "5F2D6BCF-D5A2-4260-8F37-F17886CE66F1", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "C986D46D-E847-4E7C-A3AA-DC8D80ED8FB0", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:linux:*:*", "vulnerable": true, "matchCriteriaId": "9ED3B8FD-DB5E-45CE-A367-DDA12360B879", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "77A79F77-72AD-4B79-9565-5BE8F10EABC7", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "44BDA1DC-49D5-46B8-A20D-306B312565E4", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "BEC2F966-6E1E-4C52-98F2-4B94C2EBE702", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "84C6DA49-C1CC-45C8-9398-0CA632C0FF06", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:linux:*:*", "vulnerable": true, "matchCriteriaId": "B9CE5951-546F-4D8D-A872-0C30D7535E9E", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "AADFF528-AA72-4800-A958-DDFE145727F5", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "F600EDC9-890F-42D6-BF72-78B57D9561B2", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "916C6240-03DF-4EBD-9C48-A7CD42798A67", "versionEndExcluding": "5.12.2"}], "operator": "OR"}]}], "sourceIdentifier": "security@zoom.us"}