Forwarded from Taiwan Computer Network Crisis Management and Coordination Center: Cybersecurity Alert TWCERTCC-200-202601-00000018

[Content Description]
Zoom Node Multimedia Routers (MMRs) are a core module of Zoom's hybrid cloud solution, primarily used to handle meeting media traffic, improve bandwidth efficiency, and reduce latency. Recently, Zoom released a major cybersecurity advisory (CVE-2026-22844, CVSS: 9.9), which is a command injection vulnerability. Meeting participants could potentially execute remote code on MMRs through network access.

[Affected Platforms]
Zoom Node Meetings Hybrid (ZMH) MMR module versions prior to 5.2.1716.0
Zoom Node Meeting Connector (MC) MMR module versions prior to 5.2.1716.0

[Recommended Actions]
Patch according to the solutions released on the official website: https://www.twcert.org.tw/tw/cp-169-10648-b83d7-1.html

[References]
1 https://www.twcert.org.tw/tw/cp-169-10648-b83d7-1.html