CVE-2026-30900 | THREATINT

Description

Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

PUBLISHED Reserved 2026-03-06 | Published 2026-03-11 | Updated 2026-03-12 | Assigner Zoom

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-754: Improper Check for Unusual or Exceptional Conditions

Product status

Default status

unaffected

6.6.0 (custom) before 6.6.11

affected

References

www.zoom.com/en/trust/security-bulletin/zsb-26002

cve.org (CVE-2026-30900)

nvd.nist.gov (CVE-2026-30900)

Download JSON