6.5
CVE-2025-30666
- EPSS 0.14%
- Published 14.05.2025 17:35:15
- Last modified 05.08.2025 13:43:02
- Source security@zoom.us
- Teams watchlist Login
- Open Login
NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Zoom ≫ Meeting Software Development Kit SwPlatformwindows Version < 6.4.0
Zoom ≫ Rooms Controller SwPlatformwindows Version < 6.4.0
Zoom ≫ Workplace Desktop SwPlatformwindows Version < 6.4.0
Zoom ≫ Workplace Virtual Desktop Infrastructure SwPlatformwindows Version < 6.1.17
Zoom ≫ Workplace Virtual Desktop Infrastructure SwPlatformwindows Version >= 6.1.18 < 6.2.13
Zoom ≫ Workplace Virtual Desktop Infrastructure SwPlatformwindows Version >= 6.2.14 < 6.3.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.35 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| security@zoom.us | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.