Description
A time-of-check to time-of-use (TOCTOU) race condition in the installation and uninstallation process of certain Zoom Clients for Windows could allow an authenticated local user to escalate privileges.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
| Link | Providers |
|---|---|
| https://www.zoom.com/en/trust/security-bulletin/zsb-26013 |
|
History
Thu, 16 Jul 2026 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A time-of-check to time-of-use (TOCTOU) race condition in the installation and uninstallation process of certain Zoom Clients for Windows could allow an authenticated local user to escalate privileges. | |
| Title | Zoom Workplace VDI Plugin for Windows - Improper Input Validation | |
| Weaknesses | CWE-20 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Zoom
Published:
Updated: 2026-07-16T21:13:33.254Z
Reserved: 2026-06-09T10:18:05.660Z
Link: CVE-2026-53411
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-20
Improper Input Validation