<< Back
CVE Number Vulnerability Product Severity Date
CVE-2025-27441 Zoom Cross-Site Scripting Vulnerability Zoom Medium 29-04-2025

Technical Information

A cross-site scripting vulnerability in Zoom Workplace Apps which allows an unauthenticated attacker to conduct a loss of integrity via adjacent network access.

Patch release date: Apr 08, 2025
Further information on this vulnerability is available at :
https://www.zoom.com/en/trust/security-bulletin/zsb-25013/

Affected Software

Zoom Workplace Desktop App for Windows < 6.3.10