HIGH🇬🇧 English

CVE-2026-30906

CVSS 7.8v3.1pub. 2026-05-13upd. 2026-06-03

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Zoom Rooms

    APP
    Zoom
    < 7.0.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2025-49457CRITICAL9.6PL ✓ten sam produkt

Untrusted search path w klientach Zoom dla Windows — privilege escalation przez sieć

CVE-2024-24691CRITICAL9.6PL ✓ten sam produkt

Privilege escalation w Zoom Desktop Client, VDI Client i Meeting SDK dla Windows

CVE-2026-30902HIGH7.8ten sam produkt

Improper Privilege Management in certain Zoom Clients for Windows may allow an authenticated user to conduct a...

CVE-2026-30901HIGH7.0ten sam produkt

Improper Input Validation in Zoom Rooms for Windows before 6.6.5 in Kiosk Mode may allow an authenticated user...

CVE-2025-67460HIGH7.8ten sam produkt

Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow an unauthe...

CVE-2026-30906 — HIGH 7.8 | CVEbaza.pl