zoom

232 tracked vulnerabilities.

CVE-2025-49461 MEDIUM
Zoom Workplace Clients < 6.5.0 - Unauthenticated Cross-Site Scripting and Denial of Service
Sep 09, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-49460 MEDIUM
Zoom Meeting SDK < 6.5.0 - Unauthenticated Denial of Service via Uncontrolled Resource Consumption
Sep 09, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-49458 MEDIUM
Zoom Meeting SDK < 6.5.0 - Authenticated Denial of Service via Buffer Overflow
Sep 09, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-49457 CRITICAL
Zoom Meeting SDK < 6.3.10 - Unauthenticated Privilege Escalation via Untrusted Search Path
Aug 12, 2025
CVSS 9.6
EPSS 0.01
CVE-2025-49456 MEDIUM
Zoom Meeting SDK < 6.4.10 - Unauthenticated Race Condition via Installer
Aug 12, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-49464 MEDIUM
Zoom < 6.4.5 - Authenticated Denial of Service via Buffer Overflow
Jul 10, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-49463 MEDIUM
Zoom Clients for iOS <6.4.5 - Info Disclosure
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-49462 LOW
Zoom < 6.4.5 - Authenticated Cross-Site Scripting
Jul 10, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-46789 MEDIUM
Zoom - Denial of Service via Buffer Overflow
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-46788 HIGH
Zoom Workplace for Linux <6.4.13 - Info Disclosure
Jul 10, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-46786 MEDIUM
Zoom Meeting SDK and Rooms < 6.4.0 - Authenticated Cross-Site Scripting
May 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-46785 MEDIUM
Zoom Workplace Apps for Windows - DoS
May 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30668 MEDIUM
Zoom Workplace Apps < 6.4.0 - Authenticated Denial of Service via Integer Underflow
May 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30667 MEDIUM
Zoom Workplace Apps < 6.4.0 - Authenticated Denial of Service via NULL Pointer Dereference
May 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30666 MEDIUM
Zoom Meeting SDK < 6.4.0 - Authenticated Denial of Service via NULL Pointer Dereference
May 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30665 MEDIUM
Zoom Meeting SDK < 6.4.0 - Authenticated Denial of Service via NULL Pointer Dereference
May 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30664 MEDIUM
Zoom Meeting SDK and Workplace Apps < 6.4.0 - Authenticated Cross-Site Scripting
May 14, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-30663 HIGH
Zoom Workplace Apps < 6.4.0 - Authenticated Privilege Escalation via TOCTOU Race Condition
May 14, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-30671 MEDIUM
Zoom Meeting Software Development Kit - NULL Pointer Dereference
Apr 08, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-30670 MEDIUM
Zoom Meeting SDK < 6.3.10 - Authenticated Denial of Service via Null Pointer Dereference
Apr 08, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-27443 LOW
Zoom Workplace Apps for Windows - Info Disclosure
Apr 08, 2025
CVSS 2.8
EPSS 0.00
CVE-2025-27442 MEDIUM
Zoom Meeting SDK < 6.3.10 and Rooms < 6.4.0 - Unauthenticated Cross-Site Scripting
Apr 08, 2025
CVSS 4.6
EPSS 0.00
CVE-2025-27441 MEDIUM
Zoom Meeting SDK < 6.3.10 and Rooms < 6.4.0 - Unauthenticated Cross-Site Scripting
Apr 08, 2025
CVSS 4.6
EPSS 0.00
CVE-2025-27440 HIGH
Zoom Workplace Apps - Privilege Escalation
Mar 11, 2025
CVSS 8.5
EPSS 0.00
CVE-2025-27439 HIGH
Zoom Workplace Apps - Privilege Escalation
Mar 11, 2025
CVSS 8.5
EPSS 0.00