CVE-2025-0147

Name of the Vulnerable Software and Affected Versions Zoom Workplace App for Linux versions prior to 6.2.10

Description The issue is related to type confusion in the application, which may allow an authorized user to conduct an escalation of privilege via network access. This could potentially lead to unauthorized access and control. There is evidence of this issue being exploited in real-world attacks, with logs showing successful exploitation, memory region mapping, shellcode injection, and root privileges being obtained.

Recommendations For Zoom Workplace App for Linux versions prior to 6.2.10, update to version 6.2.10 or later to resolve the issue. As a temporary workaround, consider restricting network access to minimize the risk of exploitation.