Insufficient Control Flow Management in Zoom Clients for iOS
CVE-2025-49463

6.5MEDIUM

Key Information:

Vendor: Zoom
Status: Zoom Clients For iOS
Vendor: CVE Published:; 10 July 2025

What is CVE-2025-49463?

A security vulnerability in Zoom Clients for iOS before version 6.4.5 allows unauthenticated users to potentially access sensitive information through network interactions. This issue arises from insufficient control flow management, which could lead to unauthorized data disclosure. Users are urged to update to the latest version to mitigate the risk.

Affected Version(s)

Zoom Clients for iOS iOS 0 < 6.4.5

References

https://https://www.zoom.com/en/trust/security-bulletin/z...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Jun 4, 2025