Zoom Products Multiple Vulnerabilities

Release Date: 13 Aug 2025

RISK: Medium Risk

TYPE: Clients - Productivity Products

Multiple vulnerabilities were identified in Zoom Products. A remote attacker could exploit these vulnerabilities to trigger elevation of privilege and denial of service condition on the targeted system.

---

Impact

• Denial of Service
• Elevation of Privilege

---

System / Technologies affected

• Zoom Workplace for Windows before version 6.3.10
• Zoom Workplace for Windows before version 6.4.10
• Zoom Workplace VDI for Windows before version 6.3.10 (except 6.1.16 and 6.2.12)
• Zoom Workplace VDI for Windows before version 6.3.12 (except 6.2.15)
• Zoom Rooms for Windows before version 6.3.10
• Zoom Rooms for Windows before version 6.4.5
• Zoom Rooms Controller for Windows before version 6.3.10
• Zoom Rooms Controller for Windows before version 6.4.5
• Zoom Meeting SDK for Windows before version 6.3.10
• Zoom Meeting SDK for Windows before version 6.4.10

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

• https://www.zoom.com/en/trust/security-bulletin/zsb-25029/
• https://www.zoom.com/en/trust/security-bulletin/zsb-25030/

---

Vulnerability Identifier

• CVE-2025-49456
• CVE-2025-49457

---

Source

• Zoom

---

Related Link

• https://www.zoom.com/en/trust/security-bulletin/zsb-25029/
• https://www.zoom.com/en/trust/security-bulletin/zsb-25030/