9.1
CVE-2025-46788
- EPSS 0.24%
- Veröffentlicht 10.07.2025 15:48:04
- Zuletzt bearbeitet 05.08.2025 13:42:34
- Quelle security@zoom.us
- CVE-Watchlists
- Unerledigt
Zoom Workplace for Linux - Improper Certificate Validation
Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zoom ≫ Workplace Desktop SwPlatformlinux Version < 6.4.13
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.144 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.1 | 3.9 | 5.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
| security@zoom.us | 7.4 | 2.2 | 5.2 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
|
CWE-295 Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.
https://https://www.zoom.com/en/trust/security-bulletin/zsb-25023/