Command injection in some Zoom Clients for Windows may allow an authenticated user to conduct a disclosure of information via network access.
2025-10-15T17:15:59.917
2025-10-21T19:32:07.400
Analyzed
CVSSv3.1: 4.1 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | zoom | meeting_software_development_kit | < 6.5.5 | Yes |
| Application | zoom | rooms | < 6.5.5 | Yes |
| Application | zoom | workplace_desktop | < 6.5.5 | Yes |
| Application | zoom | workplace_virtual_desktop_infrastructure | < 6.3.15 | Yes |
| Application | zoom | workplace_virtual_desktop_infrastructure | < 6.4.13 | Yes |