Zoom Workplace Desktop App
Moderate fix2 remedies
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:linux:*:*, +2 more
Moderate fix2 remedies
- < 6.31.0
- < 6.3.10
Zoom Workplace Apps Cross-Site Scripting Vulnerability Allowing Integrity Loss
Vulnerability
Patched
A cross-site scripting vulnerability has been identified in certain Zoom Workplace applications. This issue may enable an unauthenticated user to manipulate data integrity through adjacent network access. The vulnerability affects multiple platforms, including Windows, macOS, Linux, iOS, and Android, as well as Zoom's VDI client and Rooms Controller and Client applications.
Impact
Exploitation of this vulnerability could lead to cross-site scripting, allowing for the injection of malicious scripts that could be executed in the context of the user's session.
Remediation
Users are advised to update to the latest version of the Zoom Workplace App. The latest version can be downloaded from the Zoom Download Center.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
1.7exploitability
4.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.