CVE-2022-24329 It was not possible to lock dependencies in Multiplatform Gradle Projects in the Kotlin SDK before 1.6.0.
However, it was possible to lock dependencies for Android and iOS Projects. With the release of Kotlin 1.6.0, it is now also possible
CVE-2022-22780 The Meetings chat functionality in the Zoom Client for Android, iOS, Linux, macOS and Windows was vulnerable to Zip bombing attacks.
In certain product versions, users were able to send malicious Zip files to the chat room, which would cause the chat to freeze for users