Emergency Zoom Patch Released for Severe Account Takeover Flaw
A critical Zoom vulnerability affecting Windows applications could allow an unauthenticated attacker to take over user accounts remotely. Zoom has released an emergency security update and urged users and businesses to install the latest versions immediately.
Zoom Patches Critical Windows Security Flaw
The vulnerability is tracked as CVE-2026-53412 and carries a CVSS v3.1 severity score of 9.8 out of 10.
Zoom has not published detailed technical information about the flaw, likely to reduce the risk of attackers developing working exploits before users complete the update process.
According to Zoom, successful exploitation could allow an unauthenticated remote attacker to take control of an affected Zoom account.
Improper Input Validation Caused the Vulnerability
Zoom described CVE-2026-53412 as an improper input validation vulnerability.
This type of security flaw occurs when an application fails to properly verify data before processing it. Vulnerable software may accept unexpected or malicious input without checking its format, size, type, or permitted range.
Depending on how the affected component handles the input, improper validation vulnerabilities can lead to authentication bypasses, privilege escalation, account takeover, or remote code execution.
Affected Zoom Applications
The vulnerability affects several Zoom applications for Windows:
- Zoom Workplace for Windows versions earlier than 7.0.0
- Zoom Workplace VDI Client for Windows versions earlier than 7.0.10, 6.6.15, and 6.5.18 in their respective release branches
- Zoom Meeting SDK for Windows versions earlier than 7.0.0
Zoom published information about the vulnerability in security bulletin ZSB-26014.
Users Should Update Zoom Immediately
Zoom users should install the latest available application version as soon as possible.
Businesses should update centrally managed Zoom installations across their networks. Administrators should also replace outdated installation packages and update deployment configurations.
These steps can prevent automated deployment tools from reinstalling vulnerable Zoom versions during future device setups, repairs, or software rollouts.
Patched Zoom applications are available through the company’s official download channels.
In other security news, researchers disclosed a new LegacyHive zero-day exploit, while Microsoft revoked bootloaders that could bypass Secure Boot. CISA also flagged three Microsoft SharePoint vulnerabilities that attackers are actively exploiting.
Via Neowin
Read our disclosure page to find out how can you help Windows Report sustain the editorial team. Read more
User forum
0 messages