CVE-2022-28763

The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers.

CVSS v3 9.6 CRITICAL

9.6^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 2.8 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://explore.zoom.us/en/trust/security/security-bulletin/	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zoom:meetings::::::android::*
	cpe:2.3:a:zoom:meetings::::::iphone_os::*
	cpe:2.3:a:zoom:meetings::::::linux::*
	cpe:2.3:a:zoom:meetings::::::macos::*
	cpe:2.3:a:zoom:meetings::::::windows::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::android::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::iphone_os::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::linux::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::macos::*
	cpe:2.3:a:zoom:rooms_for_conference_rooms::::::windows::*
	cpe:2.3:a:zoom:virtual_desktop_infrastructure::::::windows::*

History

No history.

Information

Published : 2022-10-31 20:15

Updated : 2024-02-28 19:29

NVD link : CVE-2022-28763

Mitre link : CVE-2022-28763

CVE.ORG link : CVE-2022-28763

JSON object : View

Products Affected

zoom

virtual_desktop_infrastructure
rooms_for_conference_rooms
meetings

CWE

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

CWE-20

Improper Input Validation

{"id": "CVE-2022-28763", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security@zoom.us", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2022-10-31T20:15:12.650", "references": [{"url": "https://explore.zoom.us/en/trust/security/security-bulletin/", "tags": ["Vendor Advisory"], "source": "security@zoom.us"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-601"}]}, {"type": "Secondary", "source": "security@zoom.us", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing vulnerability. If a malicious Zoom meeting URL is opened, the malicious link may direct the user to connect to an arbitrary network address, leading to additional attacks including session takeovers."}, {"lang": "es", "value": "El Zoom Client para Meetings (para Android, iOS, Linux, macOS y Windows) anterior a la versi\u00f3n 5.12.2 es susceptible a una vulnerabilidad de an\u00e1lisis de URL. Si se abre la URL de una reuni\u00f3n de Zoom maliciosa, el enlace malicioso puede dirigir al usuario a conectarse a una direcci\u00f3n de red arbitraria, lo que genera ataques adicionales, incluida la apropiaci\u00f3n de sesiones.\n"}], "lastModified": "2022-11-01T19:43:21.347", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "5F2D6BCF-D5A2-4260-8F37-F17886CE66F1", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "C986D46D-E847-4E7C-A3AA-DC8D80ED8FB0", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:linux:*:*", "vulnerable": true, "matchCriteriaId": "9ED3B8FD-DB5E-45CE-A367-DDA12360B879", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "77A79F77-72AD-4B79-9565-5BE8F10EABC7", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:meetings:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "44BDA1DC-49D5-46B8-A20D-306B312565E4", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "BEC2F966-6E1E-4C52-98F2-4B94C2EBE702", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "84C6DA49-C1CC-45C8-9398-0CA632C0FF06", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:linux:*:*", "vulnerable": true, "matchCriteriaId": "B9CE5951-546F-4D8D-A872-0C30D7535E9E", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:macos:*:*", "vulnerable": true, "matchCriteriaId": "AADFF528-AA72-4800-A958-DDFE145727F5", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:rooms_for_conference_rooms:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "F600EDC9-890F-42D6-BF72-78B57D9561B2", "versionEndExcluding": "5.12.2"}, {"criteria": "cpe:2.3:a:zoom:virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "916C6240-03DF-4EBD-9C48-A7CD42798A67", "versionEndExcluding": "5.12.2"}], "operator": "OR"}]}], "sourceIdentifier": "security@zoom.us"}