MDR
Solutions
Partners
About
Resources
Zoom Rooms for Windows (pre-7.0.0), Zoom Workplace VDI Plugin for Windows (6.6.10), and Zoom Workplace for iOS (pre-7.0.0).
Three CVEs covering untrusted search path, external file path control (privilege escalation), and protection mechanism failure (info disclosure).
Disclosed 12–13 May 2026; no active exploitation reported; auto-update available; classified as Informative Cyber Alert.
Local Windows installer paths, Windows VDI plugin installer, and physical access to locked iOS devices running Zoom Workplace.
Untrusted search path in Windows installer, external control of file name or path in VDI plugin, and protection mechanism failure in iOS app.
Authenticated local attacker manipulates installer paths or VDI file references; physical attacker accesses iOS device directly.
Privilege escalation on Windows endpoints and information disclosure from iOS devices running affected Zoom versions.
Low-to-high severity; primarily affects locally accessible systems; informative alert as auto-updates are available.
Update Zoom Rooms to 7.0.0, VDI Plugin to 6.6.11, and Zoom Workplace iOS to 7.0.0 immediately.
Inventory Zoom installations, enable auto-update, block unpatched versions from sensitive networks, apply least privilege principles.
Zoom Security Bulletins: ZSB-26006, ZSB-26007, ZSB-26008. CVEs: CVE-2026-30904, CVE-2026-30905, CVE-2026-30906.
Trusted by clients worldwide
Led by human expertise and powered by the VisionX platform, we provide you with a 24/7 unbeatable Managed Detection & Response capability giving you transparent and consolidated security solutions.
.jpg)