548 matches found
CVE-2026-53411 Zoom Workplace VDI Plugin for Windows - Improper Input Validation
A time-of-check to time-of-use TOCTOU race condition in the installation and uninstallation process of certain Zoom Clients for Windows could allow an authenticated local user to escalate privileges...
CVE-2026-53411
CVE-2026-53411 affects Zoom Workplace VDI Plugin for Windows prior to 6.6.14. The issue is described in CVE sources as an improper input validation that could enable an authenticated local user to escalate privileges. Exploitation details are not provided in the documents. The CVSS v3.1 base scor...
Zoom Workplace < 7.0.5 Vulnerability (ZSB-26012)
The version of Zoom Workplace installed on the remote host is prior to 7.0.5. It is, therefore, affected by a vulnerability as referenced in the ZSB-26012 advisory. - A time-of-check to time-of-use TOCTOU race condition in the installation and uninstallation process of certain Zoom Clients for...
Zoom Workplace < 7.0.0 Vulnerability (ZSB-26014)
The version of Zoom Workplace installed on the remote host is prior to 7.0.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-26014 advisory. - Improper Input Validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may...
PT-2026-60293
Name of the Vulnerable Software and Affected Versions Zoom Workplace for Windows versions prior to 7.0.0 Zoom Workplace VDI Client for Windows versions prior to 7.0.10 Zoom Workplace VDI Client for Windows versions prior to 6.6.15 Zoom Workplace VDI Client for Windows versions prior to 6.5.18 Zoo...
Zoom Workplace VDI Client < 6.5.17 Vulnerability (ZSB-26012)
The version of Zoom Workplace VDI Client installed on the remote host is prior to 6.5.17. It is, therefore, affected by a vulnerability as referenced in the ZSB-26012 advisory. - A time-of-check to time-of-use TOCTOU race condition in the installation and uninstallation process of certain Zoom...
CVE-2026-53408
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53407
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53408
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53408
The CVE-2026-53408 vulnerability affects Zoom Workplace: Android before 7.0.4 and iOS before 7.0.3. It is due to Improper Authorization in the Handler for a Custom URL Scheme, enabling an unauthenticated privilege escalation via network access. The CVSSv3.1 base score is 8.1 (High) with Network a...
EUVD-2026-36523
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53408
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53407
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
EUVD-2026-36522
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53407
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2026-53407
CVE-2026-53407 relates to Zoom Workplace on Android and iOS, where the handler for custom URL schemes suffers improper authorization. The issue could allow an unauthenticated user to escalate privileges via network access. Affected products/versions: Zoom Workplace for Android before 7.0.4 and Zo...
CVE-2026-30904
Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...
CVE-2026-30905
External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...
EUVD-2026-30111
External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...
EUVD-2026-30110
Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...