Zoom Workplace for Windows - Cross-site Scripting
- ZSB-25046
- CVE-2025-62482
- Medium
- 4.3
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access.
Users can help keep themselves secure by applying the latest updates available at https://zoom.us/download.
- Zoom Workplace for Windows before version 6.5.10
- Zoom Meeting SDK for Windows before version 6.5.10
Reported by Zoom Engineering Security.
| Revision | Date | Description |
|---|---|---|
| 1.0 | 11/11/2025 | Initial publication. |