PT-2026-60293 · Zoom · Zoom Workplace+1

CVE-2026-53412

·

Published

2026-07-14

·

Updated

2026-07-16

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Zoom Workplace for Windows versions prior to 7.0.0 Zoom Workplace VDI Client for Windows versions prior to 7.0.10 Zoom Workplace VDI Client for Windows versions prior to 6.6.15 Zoom Workplace VDI Client for Windows versions prior to 6.5.18 Zoom Meeting SDK for Windows versions prior to 7.0.0
Description An improper input validation flaw allows an unauthenticated attacker with network access to remotely take over user accounts. Successful exploitation can lead to account hijacking, which may be used to escalate privileges and move laterally through connected enterprise systems, such as SSO, calendars, and backend workflows.
Recommendations Update Zoom Workplace for Windows to version 7.0.0 or later. Update Zoom Workplace VDI Client for Windows to versions 7.0.10, 6.6.15, or 6.5.18, depending on the supported release branch. Update Zoom Meeting SDK for Windows to version 7.0.0 or later. Implement least-privilege accounts for any systems integrated with backend workflows. Monitor for unusual login patterns originating from collaboration tooling.
Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2026-53412

Affected Products

Zoom Workplace
Zoom