Buffer Overflow Vulnerability in Zoom Workplace Clients
CVE-2025-49458

6.5MEDIUM

Key Information:

Vendor: Zoom Communications, Inc
Status: Zoom Workplace Clients
Vendor: CVE Published:; 9 September 2025

🔔 Create Zoom Communications, Inc Vulnerability Alert

What is CVE-2025-49458?

A buffer overflow vulnerability exists in specific versions of Zoom Workplace Clients. This flaw potentially allows an authenticated user to exploit network access to execute a denial of service attack, impacting the service availability for other users. Users should ensure they are using the latest versions to mitigate this risk.

Affected Version(s)

Zoom Workplace Clients Windows see references

References

https://www.zoom.com/en/trust/security-bulletin/ZSB-25031

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 9, 2025
Vulnerability Reserved
Jun 4, 2025