Zoom Rooms for Windows - Software Downgrade Protection Mechanism Failure

Bulletin: ZSB-25050
CVEID: CVE-2025-67460
CVSS Severity: High
CVSS Score: 7.8
CVSS Vector String: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description:

Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via local access.

Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.

Affected Products:

Zoom Rooms for Windows before version 6.6.0

Source:

Reported by an anonymous researcher.

Revision	Date	Description
1.0	12/09/2025	Initial publication.

Zoom Rooms for Windows - Software Downgrade Protection Mechanism Failure

Subscribe for updates