Zoom

Meeting Software Development Kit

82 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-62484

  • EPSS 0.09%
  • Veröffentlicht 13.11.2025 15:07:57
  • Zuletzt bearbeitet 19.11.2025 17:24:03

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

7.5

CVE-2025-62483

  • EPSS 0.08%
  • Veröffentlicht 13.11.2025 15:03:07
  • Zuletzt bearbeitet 13.01.2026 20:50:10

Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow an unauthenticated user to conduct a disclosure of information via network access.

6.1

CVE-2025-62482

  • EPSS 0.1%
  • Veröffentlicht 13.11.2025 14:56:25
  • Zuletzt bearbeitet 13.01.2026 20:50:33

Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access.

6.5

CVE-2025-30669

  • EPSS 0.01%
  • Veröffentlicht 13.11.2025 14:49:54
  • Zuletzt bearbeitet 13.01.2026 20:50:57

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.

9.8

CVE-2025-64741

  • EPSS 0.11%
  • Veröffentlicht 13.11.2025 14:46:59
  • Zuletzt bearbeitet 13.01.2026 20:52:45

Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

7.5

CVE-2025-64739

  • EPSS 0.07%
  • Veröffentlicht 13.11.2025 14:28:58
  • Zuletzt bearbeitet 13.01.2026 20:46:49

External control of file name or path in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via network access.

5.5

CVE-2025-64738

  • EPSS 0.02%
  • Veröffentlicht 13.11.2025 14:23:00
  • Zuletzt bearbeitet 13.01.2026 20:49:11

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access.

6.5

CVE-2025-58132

  • EPSS 0.12%
  • Veröffentlicht 15.10.2025 16:10:20
  • Zuletzt bearbeitet 21.10.2025 19:32:07

Command injection in some Zoom Clients for Windows may allow an authenticated user to conduct a disclosure of information via network access.

6.5

CVE-2025-58135

  • EPSS 0.04%
  • Veröffentlicht 09.09.2025 21:45:52
  • Zuletzt bearbeitet 06.10.2025 17:58:01

Improper action enforcement in certain Zoom Workplace Clients for Windows may allow an unauthenticated user to conduct a disclosure of information via network access.

4.3

CVE-2025-58134

  • EPSS 0.03%
  • Veröffentlicht 09.09.2025 21:44:01
  • Zuletzt bearbeitet 06.10.2025 17:47:34

Incorrect authorization in certain Zoom Workplace Clients for Windows may allow an authenticated user to conduct an impact to integrity via network access.