Primary

Context

Zoom Clients Improper Information Disclosure Vulnerability

Vulnerability

Patched

A vulnerability exists in certain Zoom Clients prior to version 6.5.10, allowing an unauthenticated user to access sensitive information over the network. This issue arises from improper removal of confidential data in the affected applications.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure.

Remediation

Users are advised to update to the latest version of Zoom. The latest version can be downloaded from the Zoom Download Center.

Added: Nov 13, 2025, 3:27 PM

Updated: Nov 13, 2025, 3:27 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zoom Clients Improper Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Zoom Workplace

Zoom Workplace VDI Client

Zoom Rooms

Zoom Rooms Controller

Zoom Meeting SDK

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating