cvedb.io
CVE-2022-28749
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-06-15T21:15:09.377 · Last modified 2026-06-17T04:38:57.617

Summary

Zooms On-Premise Meeting Connector MMR before version 4.8.113.20220526 fails to properly check the permissions of a Zoom meeting attendee. As a result, a threat actor in the Zooms waiting room can join the meeting without the consent of the host.

Affected products

zoom — on-premise_meeting_connector_multimedia_router

Does this affect you?

Add your gear to cvedb and we'll alert you only when zoom ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.