Primary

Context

Zoom Workplace Apps Buffer Over-Read Vulnerability Allowing Denial-of-Service

Vulnerability

Patched

A buffer over-read vulnerability has been identified in certain Zoom Workplace applications for Windows. This issue may enable an authenticated user to cause a denial-of-service condition through network access.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users are advised to update to the latest version of the Zoom Workplace Desktop App for Windows, available on the Zoom Download Center. For those using the Zoom Workplace VDI Client, update to version 6.3.10 or later, excluding versions 6.1.17 and 6.2.13. Zoom Rooms applications for Windows should also be updated to version 6.4.0 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zoom Workplace Apps Buffer Over-Read Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Zoom Workplace Desktop App

Zoom Workplace VDI Client

Zoom Rooms Controller

Zoom Rooms Client

Zoom Meeting SDK

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating