Improper Certificate Validation in Zoom Workplace for Linux
CVE-2025-46788

9.1CRITICAL

Key Information:

Vendor

Zoom
Status
Zoom Workplace For Linux
Vendor
CVE Published:
10 July 2025

What is CVE-2025-46788?

An improper certificate validation vulnerability exists in Zoom Workplace for Linux, allowing unauthorized users to potentially disclose sensitive information through network access. Affected versions prior to 6.4.13 are at risk, emphasizing the importance of timely updates to mitigate this security issue.

Affected Version(s)

Zoom Workplace for Linux Linux 0 < 6.4.13

References

https://https://www.zoom.com/en/trust/security-bulletin/z...

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.