
CVE-2025-46786 – Zoom Workplace Apps - Improper Neutralization of Special Elements
https://notcve.org/view.php?id=CVE-2025-46786
14 May 2025 — Improper neutralization of special elements in some Zoom Workplace Apps may allow an authenticated user to impact app integrity via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25022 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVE-2025-46785 – Zoom Workplace Apps for Windows - Buffer Over-read
https://notcve.org/view.php?id=CVE-2025-46785
14 May 2025 — Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25021 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVE-2025-30668 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30668
14 May 2025 — Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25020 • CWE-476: NULL Pointer Dereference •

CVE-2025-30667 – Zoom Workplace Apps - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30667
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25019 • CWE-476: NULL Pointer Dereference •

CVE-2025-30666 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30666
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •

CVE-2025-30665 – Zoom Workplace Apps for Windows - NULL Pointer Dereference
https://notcve.org/view.php?id=CVE-2025-30665
14 May 2025 — NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25018 • CWE-476: NULL Pointer Dereference •

CVE-2025-30664 – Zoom Workplace Apps - Improper Neutralization of Special Elements
https://notcve.org/view.php?id=CVE-2025-30664
14 May 2025 — Improper neutralization of special elements in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25017 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVE-2025-30663 – Zoom Workplace Apps - Time-of-check Time-of-use
https://notcve.org/view.php?id=CVE-2025-30663
14 May 2025 — Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25016 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVE-2025-0150 – Zoom Workplace Apps for iOS - Incorrect Behavior Order
https://notcve.org/view.php?id=CVE-2025-0150
11 Mar 2025 — Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authenticated user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25009 • CWE-696: Incorrect Behavior Order •

CVE-2025-0149 – Zoom Apps - Insufficient Verification of Data Authenticity
https://notcve.org/view.php?id=CVE-2025-0149
11 Mar 2025 — Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an unprivileged user to conduct a denial of service via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-25008 • CWE-345: Insufficient Verification of Data Authenticity •