Zoom Products Multiple Vulnerabilities

Release Date: 10 Jul 2025

RISK: Medium Risk

TYPE: Clients - Productivity Products

Multiple vulnerabilities were identified in Zoom Products. A remote attacker could exploit these vulnerabilities to trigger security restriction bypass, denial of service condition and sensitive information disclosure on the targeted system.

---

Impact

• Denial of Service
• Information Disclosure
• Security Restriction Bypass

---

System / Technologies affected

• Zoom Meeting SDK for Android before version 6.4.5
• Zoom Meeting SDK for iOS before version 6.4.5
• Zoom Meeting SDK for Linux before version 6.4.13
• Zoom Meeting SDK for Linux before version 6.4.5
• Zoom Meeting SDK for macOS before version 6.4.5
• Zoom Meeting SDK for Windows before version 6.4.0
• Zoom Meeting SDK for Windows before version 6.4.5
• Zoom Rooms Controller for Android before version 6.4.5
• Zoom Rooms Controller for iOS before version 6.4.5
• Zoom Rooms Controller for Linux before version 6.4.5
• Zoom Rooms Controller for macOS before version 6.4.5
• Zoom Rooms Controller for Windows before version 6.4.0
• Zoom Rooms Controller for Windows before version 6.4.5
• Zoom Rooms for Android before version 6.4.5
• Zoom Rooms for iOS before version 6.4.5
• Zoom Rooms for macOS before version 6.4.5
• Zoom Rooms for Windows before version 6.4.0
• Zoom Rooms for Windows before version 6.4.5
• Zoom Workplace VDI for Windows before version 6.3.10 (except 6.1.7 and 6.2.15)
• Zoom Workplace VDI for Windows before version 6.3.12 (except 6.2.15)
• Zoom Workplace for Android before version 6.4.5
• Zoom Workplace for Linux before version 6.4.13
• Zoom Workplace for Linux before version 6.4.5
• Zoom Workplace for Windows before version 6.4.0
• Zoom Workplace for Windows before version 6.4.5
• Zoom Workplace for iOS before version 6.4.5
• Zoom Workplace for macOS before version 6.4.5

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

• https://www.zoom.com/en/trust/security-bulletin/zsb-25023
• https://www.zoom.com/en/trust/security-bulletin/zsb-25024
• https://www.zoom.com/en/trust/security-bulletin/zsb-25025
• https://www.zoom.com/en/trust/security-bulletin/zsb-25026
• https://www.zoom.com/en/trust/security-bulletin/zsb-25027
• https://www.zoom.com/en/trust/security-bulletin/zsb-25028

---

Vulnerability Identifier

• CVE-2025-46788
• CVE-2025-46789
• CVE-2025-49462
• CVE-2025-49463
• CVE-2025-49464
• CVE-2025-49465

---

Source

• Zoom

---

Related Link

• https://www.zoom.com/en/trust/security-bulletin/zsb-25023
• https://www.zoom.com/en/trust/security-bulletin/zsb-25024
• https://www.zoom.com/en/trust/security-bulletin/zsb-25025
• https://www.zoom.com/en/trust/security-bulletin/zsb-25026
• https://www.zoom.com/en/trust/security-bulletin/zsb-25027
• https://www.zoom.com/en/trust/security-bulletin/zsb-25028