Zoom
This hub aggregates every CVE we track for Zoom. Use it to gauge the current risk picture and drill into individual advisories.
other
68
CVEs tracked
7
Critical
21
High
0
In CISA KEV
Severity distribution
MEDIUM36HIGH21CRITICAL7LOW4
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
4
0
0
0
0
0
0
2
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Zoom.
- CVE-2026-0997Mattermost Zoom Plugin channel preference API lacks authorization checks4.3
- CVE-2026-0998Mattermost Zoom Plugin allows unauthorized meeting creation and post modification via insufficient API access controls4.3
- CVE-2025-49464Zoom Clients for Windows- Classic Buffer Overflow6.5
- CVE-2025-49463Zoom Clients for iOS - Insufficient Control Flow Management6.5
- CVE-2025-49462Zoom Clients - Cross-site Scripting3.5
- CVE-2025-46789Zoom Clients for Windows - Classic Buffer Overflow6.5
- CVE-2024-27242Zoom Desktop Client for Linux - Cross Site Scripting4.1
- CVE-2024-27247Zoom Desktop Client for macOS - Improper Privilege Management5.5
- CVE-2024-24694Zoom Desktop Client for Windows - Improper Privilege Management5.9
- CVE-2024-24691Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation9.6
- CVE-2024-24690Zoom Clients - Improper Input Validation5.4
- CVE-2024-24699Zoom Clients - Business Logic Error6.5
- CVE-2024-24698Zoom Clients - Improper Authentication4.9
- CVE-2024-24697Zoom Clients - Untrusted Search Path7.2
- CVE-2024-24696Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows - Improper Input Validation6.8
Product normalization is registry-driven with AI assist and human review. How it works