GCVE - cpe:2.3:a:zoom_communications,_inc:zoom_workplace

Approved changes feed: RSS · Atom

cpe:2.3:a:zoom_communications,_inc:zoom_workplace_apps:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Zoom Communications, Inc (`060cdd3f-e4cf-5d0a-9136-898e5868cfb7`)
Product	Zoom Workplace Apps (`a243427b-2be0-5371-9616-edc4c4cface7`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-46786`	vulnerable	2026-06-03 15:01:28.019447	Zoom Workplace Apps - Cross-site Scripting MEDIUM (4.3) Cross-site scripting in some Zoom Workplace Apps may allow an authenticated user to impact app integrity via network access. Published: 2025-05-14T17:42:30.374Z Updated: 2025-10-02T20:59:29.011Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25022	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-46785`	vulnerable	2026-06-03 15:01:28.013399	Zoom Workplace Apps for Windows - Buffer Over-read MEDIUM (6.5) Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. Published: 2025-05-14T17:41:06.374Z Updated: 2025-05-14T19:00:08.453Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25021	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30668`	vulnerable	2026-06-03 15:00:29.241873	Zoom Workplace Apps - NULL Pointer Dereference MEDIUM (6.5) Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. Published: 2025-05-14T17:39:55.588Z Updated: 2025-10-02T20:44:44.793Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25020	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30667`	vulnerable	2026-06-03 15:00:29.240398	Zoom Workplace Apps - NULL Pointer Dereference MEDIUM (6.5) NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. Published: 2025-05-14T17:36:19.136Z Updated: 2025-05-14T19:00:20.154Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25019	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30664`	vulnerable	2026-06-03 15:00:29.235171	Zoom Workplace Apps - Cross-site Scripting MEDIUM (6.6) Cross-site scripting in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. Published: 2025-05-14T17:33:18.777Z Updated: 2026-02-26T18:28:08.837Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25017	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-30663`	vulnerable	2026-06-03 15:00:29.223054	Zoom Workplace Apps - Time-of-check Time-of-use HIGH (8.8) Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. Published: 2025-05-14T17:31:03.695Z Updated: 2026-02-26T18:28:09.221Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25016	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-27442`	vulnerable	2026-06-03 15:00:12.479068	Zoom Workplace Apps - Cross Site Scripting MEDIUM (4.6) Cross site scripting in some Zoom Workplace Apps may allow an unauthenticated user to conduct a loss of integrity via adjacent network access. Published: 2025-04-08T16:14:53.396Z Updated: 2026-05-15T18:15:47.314Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-27441`	vulnerable	2026-06-03 15:00:12.477523	Zoom Workplace Apps - Cross Site Scripting MEDIUM (4.6) Cross site scripting in some Zoom Workplace Apps may allow an unauthenticated user to conduct a loss of integrity via adjacent network access. Published: 2025-04-08T16:14:40.782Z Updated: 2026-05-15T18:15:16.837Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25013	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-27440`	vulnerable	2026-06-03 15:00:12.475928	Zoom Apps - Heap-based Buffer Overflow HIGH (8.5) Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. Published: 2025-03-11T17:11:16.928Z Updated: 2025-03-11T17:40:56.534Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25011/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-27439`	vulnerable	2026-06-03 15:00:12.460387	Zoom Apps - Buffer Underflow HIGH (8.5) Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. Published: 2025-03-11T17:10:28.524Z Updated: 2025-03-11T18:58:55.987Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25011/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-0151`	vulnerable	2026-06-03 14:58:23.832671	Zoom Apps - Use After Free HIGH (8.5) Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. Published: 2025-03-11T17:08:50.327Z Updated: 2025-03-11T17:44:08.820Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25010/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-0144`	vulnerable	2026-06-03 14:58:23.796903	Zoom Workplace Apps - Out-of-bounds Write LOW (3.1) Out-of-bounds write in some Zoom Workplace Apps may allow an authorized user to conduct a loss of integrity via network access. Published: 2025-01-30T19:44:06.908Z Updated: 2025-01-30T21:29:47.382Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-25003/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-45426`	vulnerable	2026-06-03 14:56:56.567788	Zoom Workplace Apps - Incorrect Ownership Assignment MEDIUM (4.9) Incorrect ownership assignment in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. Published: 2025-02-25T19:39:48.596Z Updated: 2025-02-26T16:49:25.061Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-24038/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-45425`	vulnerable	2026-06-03 14:56:56.561847	Zoom Workplace Apps - Incorrect User Management MEDIUM (4.9) Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information disclosure via network access. Published: 2025-02-25T19:38:02.925Z Updated: 2025-02-26T16:57:20.637Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-24037/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-45424`	vulnerable	2026-06-03 14:56:56.561009	Zoom Workplace Apps - Business Logic Error MEDIUM (5.3) Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access. Published: 2025-02-25T19:34:24.811Z Updated: 2025-02-25T19:39:53.249Z Open on db.gcve.eu Reference links https://www.zoom.com/en/trust/security-bulletin/zsb-24036/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Zoom Workplace Apps

PURL mappings

Vulnerability references

Contribute