Home

Description

Untrusted search path in certain Zoom Clients for Windows may allow an unauthenticated user to conduct an escalation of privilege via network access

PUBLISHED Reserved 2025-06-04 | Published 2025-08-12 | Updated 2025-08-14 | Assigner Zoom




CRITICAL: 9.6CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Problem types

CWE-426 Untrusted Search Path

Product status

Default status
unaffected

see references
affected

References

www.zoom.com/en/trust/security-bulletin/zsb-25030

cve.org (CVE-2025-49457)

nvd.nist.gov (CVE-2025-49457)

Download JSON