Missing authorization in the installer for Zoom Workplace for Windows on ARM before version 6.5.0 may allow an authenticated user to conduct an escalation of privilege via local access.
Advisories
Source ID Title
EUVD EUVD EUVD-2025-27627 Missing authorization in the installer for Zoom Workplace for Windows on ARM before version 6.5.0 may allow an authenticated user to conduct an escalation of privilege via local access.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 12 Sep 2025 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Arm
Arm arm
Microsoft
Microsoft windows
Zoom
Zoom workplace
Zoom workplace App
Zoom zoom
Vendors & Products Arm
Arm arm
Microsoft
Microsoft windows
Zoom
Zoom workplace
Zoom workplace App
Zoom zoom

Wed, 10 Sep 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 09 Sep 2025 21:45:00 +0000

Type Values Removed Values Added
Description Missing authorization in the installer for Zoom Workplace for Windows on ARM before version 6.5.0 may allow an authenticated user to conduct an escalation of privilege via local access.
Title Zoom Workplace for Windows on ARM - Missing Authorization
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Zoom

Published:

Updated: 2025-09-11T03:56:21.574Z

Reserved: 2025-06-04T22:48:18.920Z

Link: CVE-2025-49459

cve-icon Vulnrichment

Updated: 2025-09-10T20:26:08.096Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-09-09T22:15:32.667

Modified: 2025-09-11T17:14:10.147

Link: CVE-2025-49459

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-09-12T09:11:43Z