Zoom does not provide guidance on vulnerability impacts to individual customers due to a Zoom Security Bulletin or provide additional details about a vulnerability. We recommend users to update to the latest version of Zoom software in order to get the latest fixes and security improvements.
Security Bulletins
| ZSB | Title | Severity | CVE | Date Published | Date Updated |
|---|---|---|---|---|---|
| ZSB-25012 | Zoom Apps - Heap-based Buffer Overflow | High | CVE-2025-27440 | 03/11/2025 | 03/11/2025 |
| ZSB-25011 | Zoom Apps - Buffer Underflow | High | CVE-2025-27439 | 03/11/2025 | 03/11/2025 |
| ZSB-25010 | Zoom Apps - Use After Free | High | CVE-2025-0151 | 03/11/2025 | 03/11/2025 |
| ZSB-25009 | Zoom Workplace Apps for iOS - Incorrect Behavior Order | High | CVE-2025-0150 | 03/11/2025 | 03/11/2025 |
| ZSB-25008 | Zoom Apps - Insufficient Verification of Data Authenticity | Medium | CVE-2025-0149 | 03/11/2025 | 03/11/2025 |
| ZSB-25007 | Jenkins Marketplace Plugin - Missing Password Field Masking | Low | CVE-2025-0148 | 02/03/2025 | 02/03/2025 |
| ZSB-25001 | Zoom Jenkins bot plugin - Cleartext Storage of Sensitive Information | Medium | CVE-2025-0142 | 01/14/2025 | 01/30/2025 |
| ZSB-25006 | Zoom Workplace App for Linux - Type Confusion | High | CVE-2025-0147 | 01/14/2025 | 01/14/2025 |
| ZSB-25005 | Zoom Workplace app for macOS - Symlink Following | Low | CVE-2025-0146 | 01/14/2025 | 01/14/2025 |
| ZSB-25004 | Zoom Workplace Apps for Windows - Untrusted Search Path | Medium | CVE-2025-0145 | 01/14/2025 | 01/14/2025 |
| ZSB-25003 | Zoom Workplace Apps - Out-of-bounds Write | Low | CVE-2025-0144 | 01/14/2025 | 01/14/2025 |
| ZSB-25002 | Zoom Workplace Apps for Linux - Out-of-bounds Write | Medium | CVE-2025-0143 | 01/14/2025 | 01/14/2025 |
| ZSB-24035 | Zoom Workplace Desktop App for Linux - Improper Input Validation | Medium | CVE-2024-42433 | 08/13/2024 | 12/03/2024 |
| ZSB-24044 | Zoom Apps - Improper Input Validation | Medium | CVE-2024-45422 | 11/12/2024 | 11/12/2024 |
| ZSB-24043 | Zoom Apps - Buffer Overflow | High | CVE-2024-45421 | 11/12/2024 | 11/12/2024 |
| ZSB-24042 | Zoom Apps - Uncontrolled Resource Consumption | Medium | CVE-2024-45420 | 11/12/2024 | 11/12/2024 |
| ZSB-24041 | Zoom Apps - Improper Input Validation | High | CVE-2024-45419 | 11/12/2024 | 11/12/2024 |
| ZSB-24040 | Zoom Apps for macOS - Symbolic Link Following | Medium | CVE-2024-45418 | 11/12/2024 | 11/12/2024 |
| ZSB-24039 | Zoom Apps for macOS - Uncontrolled Resource Consumption | Medium | CVE-2024-45417 | 11/12/2024 | 11/12/2024 |
| ZSB-24036 | Zoom Workplace Apps - Business Logic Error | Medium | CVE-2024-45424 | 09/10/2024 | 10/08/2024 |
No results found.
The official text for Zoom Security Bulletins is English. Translations are provided for your convenience and Zoom does not make any promises, assurances, or guarantees as to the accuracy of these translations.
