CVE-2026-30903

Critical CVSS: 9.6

External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access.

Vendor

Product

CWE

CWE-73

Yayın Tarihi

2026-03-11 15:16:30

Güncelleme

2026-03-12 21:08:22

Source Identifier

security@zoom.us

KEV Date Added

Kategoriler

CWE-73 CRITICAL 2026

Referanslar

https://www.zoom.com/en/trust/security-bulletin/zsb-26005