Popular video conferencing service Zoom has resolved 9 security vulnerabilities (CVE-2025-30663, CVE-2025-30664, CVE-2025-30665, CVE-2025-30666, CVE-2025-30667, CVE-2025-30668, CVE-2025-46785, CVE-2025-46786, CVE-2025-46787) in Zoom products. A malicious actor could exploit some of these vulnerabilities to trigger elevation of privilege and denial of service condition on the targeted system. Issues affect:

• Zoom Workplace Desktop App for Windows before version 6.4.0;
• Zoom Workplace Desktop App for macOS before version 6.4.0;
• Zoom Workplace Desktop App for Linux before version 6.4.0;
• Zoom Workplace App for iOS before version 6.4.0;
• Zoom Workplace App for Android before version 6.4.0;
• Zoom Rooms Controller for Windows before version 6.4.0;
• Zoom Rooms Controller for macOS before version 6.4.0;
• Zoom Rooms Controller for Linux before version 6.4.0;
• Zoom Rooms Controller for Android before version 6.4.0;
• Zoom Rooms Client for Windows before version 6.4.0;
• Zoom Rooms Client for macOS before version 6.4.0;
• Zoom Rooms Client for Android before version 6.4.0;
• Zoom Rooms Client for iPad before version 6.4.0;
• Zoom Meeting SDK for Windows before version 6.4.0;
• Zoom Meeting SDK for iOS before version 6.4.0;
• Zoom Meeting SDK for Android before version 6.4.0;
• Zoom Meeting SDK for macOS before version 6.4.0;
• Zoom Meeting SDK for Linux before version 6.4.0;
• Zoom Workplace VDI Client for Windows before version 6.3.10;
• Zoom Workplace VDI Client for Windows before version 6.3.10 (except versions 6.1.17 and 6.2.13).

More information on vulnerabilities and updates is available in Zoom security bulletins – zoom.us