Critical
CVSS 9.6
Overview
Untrusted search path in certain Zoom Clients for Windows may allow an unauthenticated user to conduct an escalation of privilege via network access
CVE-2025-49457
Untrusted search path in certain Zoom Clients for Windows may allow an unauthent...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.6 (CRITICAL)
- Detected tags: unauth_access (tag impact: HIGH)
Recommended actions:
- Enforce authentication/authorization; reduce default endpoint exposure.