Zoom Workplace Desktop
Moderate fix1 remedy
cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:linux:*:*, +3 more
Moderate fix1 remedy
- < 6.5.0
Zoom Workplace Clients Cross-Site Scripting Vulnerability Allowing Denial-of-Service
Vulnerability
Patched
A cross-site scripting vulnerability has been identified in certain Zoom Workplace Clients, including desktop applications for Windows, macOS, and Linux, as well as the iOS app, VDI client for Windows, and various Zoom Rooms and Meeting SDK clients. This vulnerability may allow an unauthenticated user to conduct a denial-of-service attack via network access.
Impact
Exploitation of this vulnerability could lead to a denial-of-service condition, causing disruptions in network access or application performance.
Remediation
Users are advised to update to the latest version of Zoom Workplace Clients. Instructions for downloading the latest version are available on the Zoom Download page.
Added: Sep 9, 2025, 10:21 PM
Updated: Sep 9, 2025, 10:21 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
2.5exploitability
5.4remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
5.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.