Primary

Context

Zoom Workplace Apps for Windows Null Pointer Dereference Vulnerability Allowing Denial-of-Service

Vulnerability

Patched

A null pointer dereference vulnerability has been identified in certain Zoom Workplace applications for Windows. This issue may allow an authenticated user to cause a denial-of-service condition through network access. The vulnerability affects the Zoom Workplace Desktop App, VDI Client, Zoom Rooms Controller, Zoom Rooms Client, and the Zoom Meeting SDK, all prior to their respective latest versions.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users are advised to update to the latest version of the Zoom Workplace App for Windows. The latest version can be downloaded from the Zoom Download Center.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zoom Workplace Apps for Windows Null Pointer Dereference Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Zoom Workplace Desktop App

Zoom Workplace VDI Client

Zoom Rooms Controller

Zoom Rooms Client

Zoom Meeting SDK

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating