VYPR

Workplace

by Zoom Video Communications, Inc.

CVEs (15)

  • CVE-2026-30903CriMar 11, 2026
    risk 0.62cvss 9.6epss 0.00

    External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access.

  • CVE-2026-53408HigJun 12, 2026
    risk 0.53cvss 8.1epss 0.00

    Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access.

  • CVE-2026-53407HigJun 12, 2026
    risk 0.53cvss 8.1epss 0.00

    Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access.

  • CVE-2025-25035HigMar 21, 2025
    risk 0.47cvss 7.3epss 0.00

    Improper Neutralization of Input During Web Page Generation Cross-site Scripting vulnerability in Jalios JPlatform 10 allows for Reflected XSS and Stored XSS.This issue affects JPlatform 10: before 10.0.8 (SP8), before 10.0.7 (SP7), before 10.0.6 (SP6) and Jalios Workplace 6.2,…

  • CVE-2024-27243MedMay 15, 2024
    risk 0.42cvss 6.5epss 0.00

    Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access.

  • CVE-2025-27442MedApr 8, 2025
    risk 0.30cvss 4.6epss 0.00

    Cross site scripting in some Zoom Workplace Apps may allow an unauthenticated user to conduct a loss of integrity via adjacent network access.

  • CVE-2025-27441MedApr 8, 2025
    risk 0.30cvss 4.6epss 0.00

    Cross site scripting in some Zoom Workplace Apps may allow an unauthenticated user to conduct a loss of integrity via adjacent network access.

  • CVE-2026-30904LowMay 13, 2026
    risk 0.12cvss 1.8epss 0.00

    Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access.

  • CVE-2025-62484Nov 13, 2025
    risk 0.00cvss epss 0.00

    Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

  • CVE-2025-62482Nov 13, 2025
    risk 0.00cvss epss 0.00

    Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access.

  • CVE-2025-64741Nov 13, 2025
    risk 0.00cvss epss 0.00

    Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access.

  • CVE-2025-64738Nov 13, 2025
    risk 0.00cvss epss 0.00

    External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access.

  • CVE-2025-46788Jul 10, 2025
    risk 0.00cvss epss 0.00

    Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access.

  • CVE-2025-30668May 14, 2025
    risk 0.00cvss epss 0.00

    Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access.

  • CVE-2025-30666May 14, 2025
    risk 0.00cvss epss 0.00

    NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access.