📦 Workplace

by Zoom

🔍 What is Workplace?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-62484

HIGH CVSS 8.1 Nov 13, 2025

A regular expression complexity vulnerability in Zoom Workplace Clients allows unauthenticated attackers to potentially escalate privileges via network access. This affects Zoom Workplace Clients befo...

CVE-2025-64741

HIGH CVSS 8.1 Nov 13, 2025

An improper authorization vulnerability in Zoom Workplace for Android allows unauthenticated attackers with network access to escalate privileges. This affects all Android users running Zoom Workplace...

CVE-2025-30663

HIGH CVSS 8.8 May 14, 2025

A time-of-check time-of-use race condition vulnerability in Zoom Workplace Apps allows authenticated local users to escalate privileges. This affects users running vulnerable versions of Zoom Workplac...

CVE-2025-0150

HIGH CVSS 7.1 Mar 11, 2025

An incorrect behavior order vulnerability in Zoom Workplace Apps for iOS allows authenticated users to cause denial of service via network access. This affects Zoom Workplace Apps for iOS users runnin...

CVE-2025-0151

HIGH CVSS 8.5 Mar 11, 2025

This CVE describes a use-after-free vulnerability in Zoom Workplace Apps that allows authenticated users to escalate privileges through network access. The vulnerability affects users of Zoom Workplac...

CVE-2024-45421

HIGH CVSS 8.5 Feb 25, 2025

A buffer overflow vulnerability in some Zoom Apps allows authenticated users to escalate privileges through network access. This affects Zoom Apps users who have network connectivity to vulnerable sys...

CVE-2024-45419

HIGH CVSS 8.1 Nov 19, 2024

An improper input validation vulnerability in certain Zoom Apps allows unauthenticated attackers to access sensitive information via network access. This affects Zoom Apps that haven't been updated to...

CVE-2024-39825

HIGH CVSS 8.5 Aug 14, 2024

A buffer overflow vulnerability in Zoom Workplace Apps and Rooms Clients allows authenticated users to escalate privileges through network access. This affects organizations using Zoom's workplace col...

CVE-2024-39818

HIGH CVSS 7.5 Aug 14, 2024

This CVE describes a protection mechanism failure in some Zoom Workplace Apps and SDKs that allows authenticated users to access sensitive information via network connections. The vulnerability enable...

CVE-2025-49461

MEDIUM CVSS 4.3 Sep 9, 2025

A cross-site scripting vulnerability in certain Zoom Workplace Clients allows unauthenticated attackers to conduct denial of service attacks via network access. This affects users running vulnerable v...

CVE-2025-30667

MEDIUM CVSS 6.5 May 14, 2025

A NULL pointer dereference vulnerability in Zoom Workplace Apps for Windows allows authenticated users to cause denial of service through network access. This affects Zoom Workplace users on Windows s...

CVE-2025-27442

MEDIUM CVSS 4.6 Apr 8, 2025

This cross-site scripting (XSS) vulnerability in Zoom Workplace Apps allows an unauthenticated attacker on the same network to inject malicious scripts into web pages. The vulnerability enables integr...

CVE-2025-0149

MEDIUM CVSS 6.5 Mar 11, 2025

This vulnerability in Zoom Workplace Apps allows unprivileged users to cause denial of service attacks by exploiting insufficient data authenticity verification. Attackers can disrupt Zoom services vi...

CVE-2024-27246

MEDIUM CVSS 4.3 Feb 25, 2025

A use-after-free vulnerability in Zoom Workplace Apps and SDKs allows authenticated users to cause denial of service through network access. This affects users of vulnerable Zoom applications who have...

CVE-2024-27239

MEDIUM CVSS 4.3 Feb 25, 2025

A use-after-free vulnerability in Zoom Workplace Apps and SDKs allows authenticated users to cause denial of service through network access. This affects users of vulnerable Zoom applications who have...

CVE-2024-45424

MEDIUM CVSS 5.3 Feb 25, 2025

A business logic error in certain Zoom Workplace applications allows unauthenticated attackers to access sensitive information via network access. This affects organizations using vulnerable Zoom Work...

CVE-2024-45426

MEDIUM CVSS 4.9 Feb 25, 2025

This vulnerability in Zoom Workplace Apps allows privileged users to access information they shouldn't have permission to view through incorrect ownership assignment. It affects organizations using Zo...

CVE-2024-45422

MEDIUM CVSS 6.5 Nov 19, 2024

An improper input validation vulnerability in Zoom Apps before version 6.2.0 allows unauthenticated attackers to cause denial of service via network access. This affects Zoom Apps users running vulner...

CVE-2024-42437

MEDIUM CVSS 6.5 Aug 14, 2024

A buffer overflow vulnerability in Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers allows authenticated users to cause denial of service via network access. This affects organizations ...

CVE-2024-42435

MEDIUM CVSS 4.9 Aug 14, 2024

This vulnerability allows privileged users within Zoom Workplace environments to access sensitive information through network connections. It affects Zoom Workplace Apps, SDKs, Rooms Clients, and Room...

CVE-2024-39823

MEDIUM CVSS 4.9 Aug 14, 2024

This CVE describes a missing authorization vulnerability in Zoom Workplace components that could allow privileged users to access sensitive information they shouldn't have permission to view. The vuln...