CVE-2025-58135

Zoom Workplace Clients for Windows - Improper Action Enforcement

Description

Improper action enforcement in certain Zoom Workplace Clients for Windows may allow an unauthenticated user to conduct a disclosure of information via network access.

INFO

Published Date :

2025-09-09T21:45:52.362Z

Last Modified :

2025-09-10T19:33:42.439Z

Source :

Zoom

AFFECTED PRODUCTS

The following products are affected by CVE-2025-58135 vulnerability.

Vendors	Products
Microsoft	Windows
Zoom	Meeting Software Development Kit Rooms Rooms Controller Workplace Workplace App Workplace Desktop Workplace Virtual Desktop Infrastructure Zoom

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-58135.

URL	Resource
https://www.zoom.com/en/trust/security-bulletin/ZSB-25036

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact