Volerion logoVolerion
Volerion logoVolerion

Zoom Workplace Apps for Windows Insecure Default Variable Initialization Vulnerability Allowing Integrity Loss

Vulnerability

A vulnerability exists in some Zoom Workplace Apps for Windows due to insecure default variable initialization. This issue may enable an authenticated user to cause a loss of integrity through local access. The vulnerability affects the Zoom Workplace Desktop App for Windows prior to version 6.3.10, as well as the Zoom Rooms Controller and Client for Windows, both of which are also prior to version 6.4.0. Additionally, the Zoom Meeting SDK for Windows before version 6.3.10 is affected.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications or corruption of data, allowing for a loss of integrity within the application.

Remediation

Users are advised to update to the latest version of the Zoom Workplace App for Windows, available through the Zoom Download Center. Instructions for updating Zoom Rooms applications can also be found in the Zoom Download Center.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
0.6
exploitability
3.3
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.