Browse all 49 CVE security advisories affecting Zoom Communications, Inc. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Zoom Communications, Inc. operates as a leading provider of video-first unified communications platform, enabling enterprise-grade virtual meetings, messaging, and collaboration services globally. The company’s software infrastructure has historically been associated with forty-nine recorded Common Vulnerabilities and Exposures (CVEs), predominantly involving remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from complex client-server interactions and third-party dependencies within its desktop and mobile applications. Notable security incidents include early "Zoom-bombing" disruptions that prompted rapid policy updates and encryption enhancements. While the platform has significantly hardened its security posture through end-to-end encryption and improved access controls, the persistent presence of CVEs highlights the ongoing challenges in securing a widely deployed, feature-rich communication tool against sophisticated attack vectors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-0143 | Zoom Workplace Apps for Linux - Out-of-bounds Write — Zoom Workplace Apps for LinuxCWE-787 | 4.3 | Medium | 2025-01-30 |
This page lists every published CVE security advisory associated with Zoom Communications, Inc. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.