Zoom Workplace for Linux - Improper Certificate Validation

Bulletin: ZSB-25023
CVEID: CVE-2025-46788
CVSS Severity: High
CVSS Score: 7.4
CVSS Vector String: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Description:

Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access.

Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.

Affected Products:

Zoom Workplace for Linux before version 6.4.13
Zoom Meeting SDK for Linux before version 6.4.13

Source:

Reported by Zoom Offensive Security.

Revision	Date	Description
1.0	07/08/2025	Initial publication.

Zoom Workplace for Linux - Improper Certificate Validation

Subscribe for updates