| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-64738 | Zoom Workplace for macOS - External Control of File Name or Path | Zoom Communications Inc. | Zoom Workplace for macOS | Medium | 5.0 | 2025-11-13 14:23:01 | Deep Dive |
| CVE-2025-11760 | eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams <= 1.5.6 - Unauthenticated Sensitive Information Exposure | digitalmeactivecampaign | eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams | Medium | 5.3 | 2025-10-25 01:45:56 | Deep Dive |
| CVE-2025-58133 | Zoom Rooms Clients - Authentication Bypass | Zoom Communications Inc. | Zoom Rooms | Medium | 5.3 | 2025-10-15 16:13:28 | Deep Dive |
| CVE-2025-58132 | Zoom Clients for Windows - Command Injection | Zoom Communications Inc. | Zoom Clients for Windows | Medium | 4.1 | 2025-10-15 16:10:20 | Deep Dive |
| CVE-2025-58131 | Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon - Race Condition | Zoom Communications, Inc | Zoom Workplace VDI Plugin macOS Universal installer for VMware Horizon | Medium | 6.6 | 2025-09-09 21:48:51 | Deep Dive |
| CVE-2025-58135 | Zoom Workplace Clients for Windows - Improper Action Enforcement | Zoom Communications, Inc | Zoom Workplace Clients for Windows | Medium | 5.3 | 2025-09-09 21:45:52 | Deep Dive |
| CVE-2025-58134 | Zoom Workplace Clients for Windows - Incorrect Authorization | Zoom Communications, Inc | Zoom Workplace Clients for Windows | Medium | 4.3 | 2025-09-09 21:44:02 | Deep Dive |
| CVE-2025-49461 | Zoom Workplace Clients - Cross-site Scripting | Zoom Communications, Inc | Zoom Workplace Clients | Medium | 4.3 | 2025-09-09 21:42:06 | Deep Dive |
| CVE-2025-49460 | Zoom Workplace Clients - Argument Injection | Zoom Communications, Inc | Zoom Workplace Clients | Medium | 4.3 | 2025-09-09 21:38:41 | Deep Dive |
| CVE-2025-49459 | Zoom Workplace for Windows on ARM - Missing Authorization | Zoom Communications, Inc | Zoom Workplace for Windows on ARM | High | 7.8 | 2025-09-09 21:29:33 | Deep Dive |
| CVE-2025-49458 | Zoom Workplace Clients - Buffer Overflow | Zoom Communications, Inc | Zoom Workplace Clients | Medium | 6.5 | 2025-09-09 21:25:52 | Deep Dive |
| CVE-2025-35452 | Pan-Tilt-Zoom cameras default administrative credentials for web interface | PTZOptics | PT12X-SE-xx-G3 | Critical | 9.8 | 2025-09-05 17:49:03 | Deep Dive |
| CVE-2025-35451 | Pan-Tilt-Zoom cameras hard-coded default passwords with SSH and telnet enabled | PTZOptics | PT12X-SE-xx-G3 | Critical | 9.8 | 2025-09-05 17:43:53 | Deep Dive |
| CVE-2025-49457 | Zoom Clients for Windows - Untrusted Search Path | Zoom Communications Inc | Zoom Clients for Windows | Critical | 9.6 | 2025-08-12 22:54:20 | Deep Dive |
| CVE-2025-49456 | Zoom Clients for Windows- Race Condition | Zoom Communications Inc | Zoom Clients for Windows | Medium | 6.2 | 2025-08-12 22:52:23 | Deep Dive |
| CVE-2025-6441 | Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition <= 4.03.32 - Unauthenticated Login Token Generation to Authentication Bypass | tobias_conrad | WebinarIgnition – Live, Automated & Evergreen Webinars for WooCommerce | Critical | 9.8 | 2025-07-24 09:22:17 | Deep Dive |
| CVE-2025-49464 | Zoom Clients for Windows- Classic Buffer Overflow | Zoom Communications Inc. | Zoom Clients for Windows | Medium | 6.5 | 2025-07-10 16:32:20 | Deep Dive |
| CVE-2025-49463 | Zoom Clients for iOS - Insufficient Control Flow Management | Zoom Communications Inc. | Zoom Clients for iOS | Medium | 6.5 | 2025-07-10 16:26:47 | Deep Dive |
| CVE-2025-49462 | Zoom Clients - Cross-site Scripting | Zoom Communications Inc. | Zoom Clients | Low | 3.5 | 2025-07-10 16:24:15 | Deep Dive |
| CVE-2025-46789 | Zoom Clients for Windows - Classic Buffer Overflow | Zoom Communications Inc. | Zoom Clients for Windows | Medium | 6.5 | 2025-07-10 15:50:55 | Deep Dive |