Zoom Workplace Clients - Improper Certificate Validation
- ZSB-25044
- CVE-2025-30669
- Medium
- 4.8
- CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.
Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.
- Zoom Workplace for Windows before version 6.5.10
- Zoom Workplace for Linux before version 6.5.10
- Zoom Workplace VDI Client for Windows before versions 6.3.14, 6.4.12 and 6.5.10 in their respective tracks
- Zoom Meeting SDK for Windows before version 6.5.10
- Zoom Meeting SDK for Linux before version 6.5.10
Reported by shmoul.
| Revision | Date | Description |
|---|---|---|
| 1.0 | 11/11/2025 | Initial publication. |