Zoom Clients for Windows- Classic Buffer Overflow

  • ZSB-25028
  • CVE-2025-49465
  • Medium
  • 6.5
  • CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classic buffer overflow in certain Zoom Clients for Windows may allow an authorised user to conduct a denial of service via network access.

 

Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.  

  • Zoom Workplace for Windows before version 6.4.0
  • Zoom Workplace VDI for Windows before version 6.3.10 (except 6.1.7 and 6.2.15)
  • Zoom Rooms for Windows before version 6.4.0
  • Zoom Rooms Controller for Windows before version 6.4.0
  • Zoom Meeting SDK for Windows before version 6.4.0

Reported by fre3dm4n.

Revision Date Description
1.1 07/09/2025

Updated to correct CVE number.
1.0 07/08/2025

Initial publication.