PT-2026-60293 · Zoom · Zoom Workplace+1
CVE-2026-53412
·
Published
2026-07-14
·
Updated
2026-07-16
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Zoom Workplace for Windows versions prior to 7.0.0
Zoom Workplace VDI Client for Windows versions prior to 7.0.10
Zoom Workplace VDI Client for Windows versions prior to 6.6.15
Zoom Workplace VDI Client for Windows versions prior to 6.5.18
Zoom Meeting SDK for Windows versions prior to 7.0.0
Description
An improper input validation flaw allows an unauthenticated attacker with network access to remotely take over user accounts. Successful exploitation can lead to account hijacking, which may be used to escalate privileges and move laterally through connected enterprise systems, such as SSO, calendars, and backend workflows.
Recommendations
Update Zoom Workplace for Windows to version 7.0.0 or later.
Update Zoom Workplace VDI Client for Windows to versions 7.0.10, 6.6.15, or 6.5.18, depending on the supported release branch.
Update Zoom Meeting SDK for Windows to version 7.0.0 or later.
Implement least-privilege accounts for any systems integrated with backend workflows.
Monitor for unusual login patterns originating from collaboration tooling.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Zoom Workplace
Zoom