Weaknesses of type CWE-449
14 resultsCVE-2024-49041MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 1.1%CVE-2023-36535HIGHClient-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosEPSS 1.0%CVE-2025-21404MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 1.0%CVE-2023-39215HIGHImproper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network access.EPSS 0.9%CVE-2023-39209MEDIUMImproper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an information disclosuEPSS 0.8%CVE-2025-26643MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.7%CVE-2023-43588LOWInsufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network aEPSS 0.7%CVE-2023-43585HIGHImproper access control in Zoom Mobile App for iOS and Zoom SDKs for iOS before version 5.16.5 may allow an authenticated user to conduct a EPSS 0.6%CVE-2024-24698MEDIUMZoom Clients - Improper AuthenticationEPSS 0.5%CVE-2024-38083MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.5%CVE-2024-43577MEDIUMMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.5%CVE-2025-49736MEDIUMMicrosoft Edge (Chromium-based) for Android Spoofing VulnerabilityEPSS 0.5%CVE-2025-56139MEDIUMLinkedIn Mobile Application for Android version 4.1.1087.2 fails to update link preview metadata (image, title, description) when a user repEPSS 0.3%CVE-2025-13637MEDIUMInappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage iEPSS 0.2%