CVE-2022-28764 - How a Zoom Meeting Database Bug Could Leak Your Chats (With Exploit Example)
*Published: June 2024*
What Is CVE-2022-28764?
In late 2022, Zoom patched a serious vulnerability tracked as CVE-2022-28764. This bug lived in Zoom Client for Meetings
CVE-2021-40272 OP5 Monitor 8.3.1, 8.3.2, and OP5 8.3.3 are vulnerable to Cross Site Scripting (XSS).
The security issue was discovered by Justin Habben of North Dakota State University in his research paper “ The Dell EMC OpenManage Power Center 5.0,
CVE-2022-45184 The Web Server in Ironman Software PowerShell Universal v3.x and v2.x allows for directory traversal, which can be used to create, delete, update and display files outside of the configuration directory, with administrator privilege.
This issue has been addressed by removing directory traversal capabilities from the endpoint. An attacker with administrator privileges on the system can now create, delete,
CVE-2021-38828 Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is vulnerable to traffic sniffing.
When the Xiongmai Camera XM-JPR2-LX V4.02.R12.A6420987.10002.147502.00000 is connected to the internet, attackers can sniff the transmitted data to extract
CVE-2022-3967 Vesta Control Panel had a critical vulnerability where a function of the file sed Handler was manipulated, leading to argument injection.
A second critical vulnerability was found in Vesta's web interface. It is a flaw in sed Handler that results in remote code execution.
Episode
00:00:00
00:00:00