{ "file_item": { "filepath": "security-advisories", "filename": "CERT-EU-SA2022-038.pdf" }, "title": "Zoom Vulnerabilities", "serial_number": "2022-038", "publish_date": "27-05-2022 14:29:00", "description": "On the 17th of May 2022, Zoom released an advisory about two high vulnerabilities. They are tracked as CVE-2022-22786 with a CVSS score of 7.5 and CVE-2022-22784 with a CVSS score of 8.1. A successful exploitation of both of these vulnerabilities could be used in a more sophisticated attack to trick a user into downgrading their Zoom client to a less secure version and to forge XMPP messages from the server, respectively.", "url_title": "2022-038", "content_markdown": "---\ntitle: 'Zoom Vulnerabilities'\nversion: '1.0'\nnumber: '2022-038'\noriginal_date: 'May 17, 2022'\ndate: 'May 27, 2022'\n---\n\n_History:_\n\n* _27/05/2022 --- v1.0 -- Initial publication_\n\n# Summary\n\nOn the 17th of May 2022, Zoom released an advisory about two high vulnerabilities. They are tracked as CVE-2022-22786 with a CVSS score of 7.5 and CVE-2022-22784 with a CVSS score of 8.1. A successful exploitation of both of these vulnerabilities could be used in a more sophisticated attack to trick a user into downgrading their Zoom client to a less secure version and to forge XMPP messages from the server, respectively [1,2].\n\n# Technical Details\n\nThe `CVE-2022-22786` affects the Zoom Client for Meetings for Windows and Zoom Rooms for Conference Room for Windows which fail to properly check the installation version during the update process.\n\nThe `CVE-2022-22784` affects the Zoom Client for Meetings which fails to properly parse XML stanzas in XMPP messages. This can allow a malicious user to break out of the current XMPP message context and create a new message context to have the receiving user\u2019s client perform a variety of actions. \n\n# Affected Products\n\n`CVE-2022-22786`\n\n- All Zoom Client for Meetings for Windows before version 5.10.0\n- All Zoom Rooms for Conference Room for Windows before version 5.10.0\n\n`CVE-2022-22784`\n\n- Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.10.0\n\n# Recommendations \n\nCERT-EU strongly recommends applying the available updates as soon as possible.\n\n## Workarounds\n\nNo workarounds are available.\n\n# References\n\n[1] \n\n[2] \n", "content_html": "

History:

Summary

On the 17th of May 2022, Zoom released an advisory about two high vulnerabilities. They are tracked as CVE-2022-22786 with a CVSS score of 7.5 and CVE-2022-22784 with a CVSS score of 8.1. A successful exploitation of both of these vulnerabilities could be used in a more sophisticated attack to trick a user into downgrading their Zoom client to a less secure version and to forge XMPP messages from the server, respectively [1,2].

Technical Details

The CVE-2022-22786 affects the Zoom Client for Meetings for Windows and Zoom Rooms for Conference Room for Windows which fail to properly check the installation version during the update process.

The CVE-2022-22784 affects the Zoom Client for Meetings which fails to properly parse XML stanzas in XMPP messages. This can allow a malicious user to break out of the current XMPP message context and create a new message context to have the receiving user\u2019s client perform a variety of actions.

Affected Products

CVE-2022-22786

CVE-2022-22784

Recommendations

CERT-EU strongly recommends applying the available updates as soon as possible.

Workarounds

No workarounds are available.

References

[1] https://explore.zoom.us/en/trust/security/security-bulletin/

[2] https://bugs.chromium.org/p/project-zero/issues/detail?id=2254

", "licence": { "title": "Creative Commons Attribution 4.0 International (CC-BY 4.0)", "link": "https://creativecommons.org/licenses/by/4.0/", "restrictions": "https://cert.europa.eu/legal-notice", "author": "The Cybersecurity Service for the Union institutions, bodies, offices and agencies" } }