{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-25T07:28:39.376","vulnerabilities":[{"cve":{"id":"CVE-2025-49461","sourceIdentifier":"security@zoom.us","published":"2025-09-09T22:15:33.013","lastModified":"2025-10-06T17:45:49.187","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting in certain Zoom Workplace Clients may allow an unauthenticated user to conduct a denial of service via network access."}],"metrics":{"cvssMetricV31":[{"source":"security@zoom.us","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H","baseScore":7.4,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":4.0}]},"weaknesses":[{"source":"security@zoom.us","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:meeting_software_development_kit:*:*:*:*:*:android:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"5089DFBB-1D06-4448-AAA7-74EE48C989C2"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:meeting_software_development_kit:*:*:*:*:*:linux:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"614582AC-FE96-4161-A2D4-D9D75712A363"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:meeting_software_development_kit:*:*:*:*:*:macos:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"DC74FD2C-12E3-4EC3-96DC-53E0FF5A8FF5"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:meeting_software_development_kit:*:*:*:*:*:windows:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"7D7BB056-46F3-4E1F-8CC8-F63CD84406A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms:*:*:*:*:*:android:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"140433EE-35C6-42E1-8EF2-1C9CE8524602"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms:*:*:*:*:*:ipad_os:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"FC3A1BB1-F411-41A7-B64A-8C5928680034"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms:*:*:*:*:*:macos:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"AFF7479F-4C14-4B12-A0A2-5D1A5376E38C"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms:*:*:*:*:*:windows:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"CB0357E0-F2BC-449C-A95D-96037CE0D78A"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms_controller:*:*:*:*:*:android:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"F1851328-A625-47EB-B9D7-439274E21C36"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms_controller:*:*:*:*:*:linux:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"5C648817-B98A-4DC2-A68C-389AE83E4484"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms_controller:*:*:*:*:*:macos:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"BC81D4CE-4E43-4323-B65E-204044C9C9BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:rooms_controller:*:*:*:*:*:windows:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"EE228E04-E5E5-425C-8980-28BD8C8356F8"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace:*:*:*:*:*:iphone_os:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"DECE4F11-EE4A-4FAC-B6B5-529D3F6F844D"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:linux:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"B67A0A25-3ED1-4D09-BF23-9A01CFBC6F29"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:macos:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"86DAFA44-AC9A-460F-B552-C6009D7EAF0D"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*","versionEndExcluding":"6.5.0","matchCriteriaId":"68497FDD-DFBD-43CE-9C24-7536BBE35EDF"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*","versionEndExcluding":"6.3.14","matchCriteriaId":"5D61DBA7-2AFE-47E4-8A7E-3C8EE6696BF9"},{"vulnerable":true,"criteria":"cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*","versionStartIncluding":"6.4.0","versionEndExcluding":"6.4.12","matchCriteriaId":"D325C796-B3D5-4A6A-A165-32A9CE4DC62C"}]}]}],"references":[{"url":"https://www.zoom.com/en/trust/security-bulletin/ZSB-25034","source":"security@zoom.us","tags":["Vendor Advisory"]}]}}]}