VDB

CVE-2025-30669

CVE-2025-30669 PUBLISHED CVSS 4.800000190734863 MEDIUM

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access.

EPSS 0.09% · 25.7th percentile

Risk Scores

CVSS 3.1
4.800000190734863
CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
0.09%
25.7th percentile

Affected Products

VendorProductVersions
zoommeeting_software_development_kit0, 0
Zoom Communications Inc.Zoom Workplace Clientssee references
zoomworkplace_desktop0, 0
zoomworkplace_virtual_desktop_infrastructure0, 6.4.10

Timeline

  • Apr 15, 2025 PoC Published
  • Nov 11, 2025 PoC Published
  • Nov 13, 2025 Coalition ESS Score
  • Nov 13, 2025 CVE Published
  • Nov 13, 2025 CVE Updated
  • Nov 13, 2025 PoC Published
  • Nov 14, 2025 EPSS Score
  • Nov 15, 2025 Coalition ESS Score
  • Nov 16, 2025 Coalition ESS Score
  • Nov 19, 2025 EPSS Score
  • Nov 24, 2025 EPSS Score
  • Nov 29, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›