7.5
CVE-2025-62483
- EPSS 0.24%
- Veröffentlicht 13.11.2025 15:03:07
- Zuletzt bearbeitet 13.01.2026 20:50:10
- Quelle security@zoom.us
- CVE-Watchlists
- Unerledigt
Zoom Clients - Improper Removal of Sensitive Information
Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow an unauthenticated user to conduct a disclosure of information via network access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zoom ≫ Meeting Software Development Kit SwPlatformlinux Version < 6.5.10
Zoom ≫ Meeting Software Development Kit SwPlatformmacos Version < 6.5.10
Zoom ≫ Meeting Software Development Kit SwPlatformwindows Version < 6.5.10
Zoom ≫ Rooms Controller SwPlatformlinux Version < 6.5.10
Zoom ≫ Rooms Controller SwPlatformmacos Version < 6.5.10
Zoom ≫ Rooms Controller SwPlatformwindows Version < 6.5.10
Zoom ≫ Workplace Desktop SwPlatformlinux Version < 6.5.10
Zoom ≫ Workplace Desktop SwPlatformmacos Version < 6.5.10
Zoom ≫ Workplace Desktop SwPlatformwindows Version < 6.5.10
Zoom ≫ Workplace Virtual Desktop Infrastructure SwPlatformwindows Version < 6.3.14
Zoom ≫ Workplace Virtual Desktop Infrastructure SwPlatformwindows Version >= 6.4.10 < 6.4.12
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.143 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| security@zoom.us | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer
The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.
https://www.zoom.com/en/trust/security-bulletin/zsb-25047