Zoom

Meeting Software Development Kit

84 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2026-53408

  • EPSS 0.21%
  • Veröffentlicht 12.06.2026 17:57:01
  • Zuletzt bearbeitet 16.06.2026 18:59:00

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access.

7.8

CVE-2026-30900

Medienbericht
  • EPSS 0.13%
  • Veröffentlicht 11.03.2026 14:44:36
  • Zuletzt bearbeitet 14.05.2026 21:06:34

Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

9.8

CVE-2025-62484

  • EPSS 0.26%
  • Veröffentlicht 13.11.2025 15:07:57
  • Zuletzt bearbeitet 19.11.2025 17:24:03

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

7.5

CVE-2025-62483

  • EPSS 0.24%
  • Veröffentlicht 13.11.2025 15:03:07
  • Zuletzt bearbeitet 13.01.2026 20:50:10

Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow an unauthenticated user to conduct a disclosure of information via network access.

6.1

CVE-2025-62482

  • EPSS 0.17%
  • Veröffentlicht 13.11.2025 14:56:25
  • Zuletzt bearbeitet 13.01.2026 20:50:33

Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access.

6.5

CVE-2025-30669

  • EPSS 0.09%
  • Veröffentlicht 13.11.2025 14:49:54
  • Zuletzt bearbeitet 13.01.2026 20:50:57

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.

9.8

CVE-2025-64741

  • EPSS 0.41%
  • Veröffentlicht 13.11.2025 14:46:59
  • Zuletzt bearbeitet 13.01.2026 20:52:45

Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

7.5

CVE-2025-64739

  • EPSS 0.29%
  • Veröffentlicht 13.11.2025 14:28:58
  • Zuletzt bearbeitet 13.01.2026 20:46:49

External control of file name or path in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via network access.

5.5

CVE-2025-64738

  • EPSS 0.14%
  • Veröffentlicht 13.11.2025 14:23:00
  • Zuletzt bearbeitet 13.01.2026 20:49:11

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access.

6.5

CVE-2025-58132

  • EPSS 1.89%
  • Veröffentlicht 15.10.2025 16:10:20
  • Zuletzt bearbeitet 21.10.2025 19:32:07

Command injection in some Zoom Clients for Windows may allow an authenticated user to conduct a disclosure of information via network access.