HIGH🇵🇱 Wersja polska

CVE-2026-53407

CVSS 8.1v3.1pub. 2026-06-12upd. 2026-06-26

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
  • Zoom Workplace

    APP
    Zoom
    < 7.0.3< 7.0.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-53408HIGH8.1ten sam produkt

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and...

CVE-2025-62484HIGH8.1ten sam produkt

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an...

CVE-2025-64741HIGH8.1ten sam produkt

Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticat...

CVE-2025-30663HIGH8.8ten sam produkt

Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduc...

CVE-2025-0151HIGH8.5ten sam produkt

Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privile...