CVE-2026-30900

HIGH

Zoom Client for Windows - Privilege Escalation

Title source: llm

Description

Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

References (1)

[Various Sources] https://www.zoom.com/en/trust/security-bulletin/zsb-26002

Scores

CVSS v3 7.8

EPSS 0.0002

EPSS Percentile 4.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-754

Status published

Published Mar 11, 2026

Tracked Since Mar 11, 2026