V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
BDU:2025-12732
BDU
High

Уязвимость программного обеспечения для проведения видеоконференций Zoom связана с нарушением начальной границы буфера. Эксплуатация уязвим…

CVSS
8.5
High
EPSS
0.00
p0
Published
2025-01-01
Updated
2025-01-01
Description

Уязвимость программного обеспечения для проведения видеоконференций Zoom связана с нарушением начальной границы буфера. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, повысить свои привилегии

Affected products
Zoom video communications, inc. Zoom meeting sdk for androidZoom video communications, inc. Zoom meeting sdk for iosZoom video communications, inc. Zoom meeting sdk for linuxZoom video communications, inc. Zoom meeting sdk for macosZoom video communications, inc. Zoom meeting sdk for windowsZoom video communications, inc. Zoom rooms client for androidZoom video communications, inc. Zoom rooms client for ipadZoom video communications, inc. Zoom rooms client for macosZoom video communications, inc. Zoom rooms client for windowsZoom video communications, inc. Zoom rooms controller for androidZoom video communications, inc. Zoom rooms controller for linuxZoom video communications, inc. Zoom rooms controller for macosZoom video communications, inc. Zoom rooms controller for windowsZoom video communications, inc. Zoom workplace app for androidZoom video communications, inc. Zoom workplace app for iosZoom video communications, inc. Zoom workplace app for linuxZoom video communications, inc. Zoom workplace app for macosZoom video communications, inc. Zoom workplace app for windowsZoom video communications, inc. Zoom workplace vdi client for windows
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Timeline
2025-01-01
Published
2025-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: H
High (H)
Privileges Required
PR: L
Low (L)
User Interaction
UI: N
None (N)
Scope
S: C
Changed (C)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.000 · p0
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Zoom Video Communications,
Zoom Meeting Sdk For WindowsZoom Meeting Sdk For MacosZoom Meeting Sdk For IosZoom Meeting Sdk For AndroidZoom Rooms Controller For WindowsZoom Workplace App For IosZoom Workplace Vdi Client For WindowsZoom Workplace App For AndroidZoom Rooms Controller For LinuxZoom Rooms Controller For Android+9
ProductVendorStatus
zoom meeting sdk for androidzoom video communications, inc.Tracked
zoom meeting sdk for ioszoom video communications, inc.Tracked
zoom meeting sdk for linuxzoom video communications, inc.Tracked
zoom meeting sdk for macoszoom video communications, inc.Tracked
zoom meeting sdk for windowszoom video communications, inc.Tracked
zoom rooms client for androidzoom video communications, inc.Tracked
zoom rooms client for ipadzoom video communications, inc.Tracked
zoom rooms client for macoszoom video communications, inc.Tracked
zoom rooms client for windowszoom video communications, inc.Tracked
zoom rooms controller for androidzoom video communications, inc.Tracked
zoom rooms controller for linuxzoom video communications, inc.Tracked
zoom rooms controller for macoszoom video communications, inc.Tracked
zoom rooms controller for windowszoom video communications, inc.Tracked
zoom workplace app for androidzoom video communications, inc.Tracked
zoom workplace app for ioszoom video communications, inc.Tracked
zoom workplace app for linuxzoom video communications, inc.Tracked
zoom workplace app for macoszoom video communications, inc.Tracked
zoom workplace app for windowszoom video communications, inc.Tracked
zoom workplace vdi client for windowszoom video communications, inc.Tracked
Source databases
BDU
Related vulnerabilities
CVE-2025-27439