Zoom Clients - External Control of File Name or Path
CVE-2025-64739

4.3MEDIUM

Key Information:

Vendor: Zoom
Status: Zoom Clients
Vendor: CVE Published:; 13 November 2025

What is CVE-2025-64739?

External control of file name or path in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via network access.

Affected Version(s)

Zoom Clients Windows see references

References

https://www.zoom.com/en/trust/security-bulletin/zsb-25041

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2025
Vulnerability Reserved
Nov 10, 2025

JSON