7 matches found
CVE-2025-62483
Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow an unauthenticated user to conduct a disclosure of information via network access...
CVE-2025-62482
Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access...
CVE-2025-64741 Zoom Workplace for Android - Improper Authorization Handling
Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access...
CVE-2025-64738
CVE-2025-64738 affects Zoom Workplace on macOS prior to 6.5.10. An authenticated user can trigger external control of a file name or path, enabling information disclosure via local access. The issue is tied to Zoom Workplace versions before 6.5.10; remediation is to upgrade to 6.5.10 or later per...
CVE-2025-64738 Zoom Workplace for macOS - External Control of File Name or Path
External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...
PT-2025-46840
Name of the Vulnerable Software and Affected Versions Zoom Workplace for Android versions prior to 6.5.10 Description Improper authorization handling in Zoom Workplace for Android may allow an unauthenticated user to escalate privileges via network access. An unauthenticated attacker can exploit...
Zoom Workplace < 6.5.10 Vulnerability (ZSB-25046)
The version of Zoom Workplace installed on the remote host is prior to 6.5.10. It is, therefore, affected by a vulnerability as referenced in the ZSB-25046 advisory. - Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity vi...