CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0150 – Zoom Workplace Apps for iOS - Incorrect Behavior Order
https://notcve.org/view.php?id=CVE-2025-0150
11 Mar 2025 — Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25009 • CWE-696: Incorrect Behavior Order •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0149 – Zoom Apps - Insufficient Verification of Data Authenticity
https://notcve.org/view.php?id=CVE-2025-0149
11 Mar 2025 — Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an unprivileged user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25008 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45418 – Zoom Apps for macOS - Symbolic Link Following
https://notcve.org/view.php?id=CVE-2024-45418
25 Feb 2025 — Symlink following in the installer for some Zoom apps for macOS before version 6.1.5 may allow an authenticated user to conduct an escalation of privilege via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24040 • CWE-61: UNIX Symbolic Link (Symlink) Following •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45417 – Zoom Apps for macOS - Uncontrolled Resource Consumption
https://notcve.org/view.php?id=CVE-2024-45417
25 Feb 2025 — Uncontrolled resource consumption in the installer for some Zoom apps for macOS before version 6.1.5 may allow a privileged user to conduct a disclosure of information via local access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24039 • CWE-708: Incorrect Ownership Assignment •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45426 – Zoom Workplace Apps - Incorrect Ownership Assignment
https://notcve.org/view.php?id=CVE-2024-45426
25 Feb 2025 — Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24038 • CWE-708: Incorrect Ownership Assignment •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45425 – Zoom Workplace Apps - Incorrect User Management
https://notcve.org/view.php?id=CVE-2024-45425
25 Feb 2025 — Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24037 • CWE-286: Incorrect User Management •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45424 – Zoom Workplace Apps - Business Logic Error
https://notcve.org/view.php?id=CVE-2024-45424
25 Feb 2025 — Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24036 • CWE-840: Business Logic Errors •
CVSS: 2.6EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0148 – Zoom Jenkins Marketplace plugin - Missing Password Field Masking
https://notcve.org/view.php?id=CVE-2025-0148
03 Feb 2025 — Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may allow an unauthenticated user to conduct a disclosure of information via adjacent network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25007 • CWE-549: Missing Password Field Masking •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0147 – Zoom Workplace App for Linux - Type Confusion
https://notcve.org/view.php?id=CVE-2025-0147
30 Jan 2025 — Type confusion in the Zoom Workplace App for Linux before 6.2.10 may allow an authorized user to conduct an escalation of privilege via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25006 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 3.9EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0146 – Zoom Workplace app for macOS - Symlink Following
https://notcve.org/view.php?id=CVE-2025-0146
30 Jan 2025 — Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an authenticated user to conduct a denial of service via local access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25005 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •