Zoom
Zoom Workplace for Windows
Zoom Workplace desktop app for Windows.
7.0.2 (34412)
- Release date
- April 03, 2026
- CVE status
- 5 visible CVEs
Source
Vendor Release Information
Public release notes are linked for the latest stored release.
Release history
See the latest published releases stored for this product.
| Version | Published | Notes |
|---|---|---|
| 7.0.2 (34412) | 2026-04-03 | Release Notes |
Vulnerability tracking
Review curated CVEs for this product and see whether the current version is marked affected. Only CVEs with a CVSS score of 7.0 or higher and published in the last 90 days are shown.
| CVE | Severity | Published | Status | Summary |
|---|---|---|---|---|
| CVE-2026-30903 | CRITICAL (9.6) | 2026-03-11 | Current versionunclear | External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access. Affected versions
|
| CVE-2026-30902 | HIGH (7.8) | 2026-03-11 | Current versionunclear | Improper Privilege Management in certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access. Affected versions
|
| CVE-2026-30901 | HIGH (7.0) | 2026-03-11 | Current versionunclear | Improper Input Validation in Zoom Rooms for Windows before 6.6.5 in Kiosk Mode may allow an authenticated user to conduct an escalation of privilege via local access. Affected versions
|
| CVE-2026-30900 | HIGH (7.8) | 2026-03-11 | Current versionunclear | Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access. Affected versions
|
| CVE-2026-22844 | CRITICAL (9.9) | 2026-01-20 | Current versionunclear | A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before version 5.2.1716.0 may allow a meeting participant to conduct remote code execution of the MMR via network access. Affected versions
|