HIGH🇬🇧 English

CVE-2025-62484

CVSS 8.1v3.1pub. 2025-11-13upd. 2025-11-19

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
  • Zoom Meeting Software Development Kit

    APP
    Zoom
    < 6.5.10
  • Zoom Workplace

    APP
    Zoom
    < 6.5.10
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2025-49457CRITICAL9.6PL ✓ten sam produkt

Untrusted search path w klientach Zoom dla Windows — privilege escalation przez sieć

CVE-2024-24691CRITICAL9.6PL ✓ten sam produkt

Privilege escalation w Zoom Desktop Client, VDI Client i Meeting SDK dla Windows

CVE-2026-53407HIGH8.1ten sam produkt

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and...

CVE-2026-53408HIGH8.1ten sam produkt

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and...

CVE-2026-30900HIGH7.8ten sam produkt

Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an aut...