HIGH🇬🇧 English

CVE-2026-53407

CVSS 8.1v3.1pub. 2026-06-12upd. 2026-06-26

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privilege via network access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
  • Zoom Workplace

    APP
    Zoom
    < 7.0.3< 7.0.4
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2026-53408HIGH8.1ten sam produkt

Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and...

CVE-2025-62484HIGH8.1ten sam produkt

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an...

CVE-2025-64741HIGH8.1ten sam produkt

Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticat...

CVE-2025-30663HIGH8.8ten sam produkt

Time-of-check time-of-use race condition in some Zoom Workplace Apps may allow an authenticated user to conduc...

CVE-2025-0151HIGH8.5ten sam produkt

Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privile...