ГлавнаяУязвимости → CVE-2026-30905
7.8высокая

CVE-2026-30905

Описание

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access.

Затрагиваемое ПО
Zoom Workplace virtual desktop infrastructure
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.zoom.com/en/trust/security-bulletin/zsb-26007