8.5
CVE-2025-27440 - Zoom Apps - Heap-based Buffer Overflow
Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
8.5
CVE-2025-27439 - Zoom Apps - Buffer Underflow
Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
8.5
CVE-2025-0151 - Zoom Apps - Use After Free
Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
7.1
CVE-2025-0150 - Zoom Workplace Apps for iOS - Incorrect Behavior Order
Incorrect behavior order in some Zoom Workplace Apps for iOS before version 6.3.0 may allow an authenticated user to conduct a denial of service via network access.
6.5
CVE-2025-0149 - Zoom Apps - Insufficient Verification of Data Authenticity
Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an unprivileged user to conduct a denial of service via network access.
8.8
CVE-2025-26645 - Remote Desktop Client Remote Code Execution Vulnerability
Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
7
CVE-2025-26633 - Microsoft Management Console Security Feature Bypass Vulnerability
Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.
7.3
CVE-2025-26631 - Visual Studio Code Elevation of Privilege Vulnerability
Uncontrolled search path element in Visual Studio Code allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-26630 - Microsoft Access Remote Code Execution Vulnerability
Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-26629 - Microsoft Office Remote Code Execution Vulnerability
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.