Path Traversal in Zoom for Android Clients
- ZSB-22033
- CVE-2022-36928
- Medium
- 6.1
- CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N
Zoom for Android clients before version 5.13.0 contain a path traversal vulnerability. A third party app could exploit this vulnerability to read and write to the Zoom application data directory.
Users can help keep themselves secure by applying current updates or downloading the latest Zoom software with all current security updates from https://zoom.us/download.
- Zoom for Android clients before version 5.13.0
Reported by Dimitrios Valsamaras of Microsoft
Revision | Date | Description |
---|---|---|
1.0 | 01/06/2023 | Initial Publication |