Cyber999 Advisories

Overview Contact Advisories Incident Statistics
Share this page :
11 July 2025     Advisory

MA-1361.072025: MyCERT Advisory - Security Updates – Zoom Clients

1.0 Introduction
Recently, Zoom has issued a security update to address six new vulnerabilities affecting various Zoom Clients and the Zoom Workplace application across Windows, macOS, iOS and Linux platforms.

2.0 Impact
This vulnerability includes buffer overflow, improper authentication, cross-site scripting, and certificate validation flaws. Exploitation could result in arbitrary code execution, session hijacking or bypassing of security controls.

3.0 Affected Products

  • CVE-2025-49465 (Medium) – Zoom Clients for Windows – Classic Buffer Overflow
  • CVE-2025-49464 (Medium) – Zoom Clients for macOS – Improper Authentication
  • CVE-2025-49463 (Medium) – Zoom Client for iOS – Insufficient Control Flow Management
  • CVE-2025-49462 (Low) – Zoom Clients – Cross-site Scripting
  • CVE-2025-46789 (Medium) – Zoom Clients for Windows – Classic Buffer Overflow
  • CVE-2025-46788 (High) – Zoom Workplace for Linux – Improper Certificate Validation
     

4.0 Recommendations
Users and system administrators are encouraged to review the  Zoom Security Bulletin  and upgrade to the latest version.

Kindly refer to the URL for more information:

Generally, CyberSecurity Malaysia advises the users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.

For further enquiries, please contact us through the following channels:

E-mail: cyber999[at]cybersecurity.my 
Phone: 1-300-88-2999 (monitored during business hours) 
Mobile: +60 19 2665850 (24x7 call incident reporting) 
Business Hours: Mon - Fri 08:30 -17:30 MYT 
Web:  https://www.cybersecurity.my


5.0 References

Search
Type
Archives
logo
CyberSecurity Malaysia is the national cyber security specialist agency under the purview of the Ministry of Digital (KD)
 
Select User Category
Contact Us

  • CyberSecurity Malaysia,
    Level 7 Tower 1, Menara Cyber Axis, Jalan Impact,
    63000 Cyberjaya, Selangor Darul Ehsan, Malaysia.

  • enquiry@cybersecurity.my

  • +603 - 8800 7999

  • +603 - 8008 7000

COPYRIGHT © CYBERSECURITY MALAYSIA

CONTACT US | DISCLAIMER | PERSONAL DATA PROTECTION NOTICE | SITEMAP

TOP
ASK Byte
Chatbot Portal

Hi, I am ASK Byte. Please submit your questions about the portal and I will try to get answers from online knowledge stores.

Hi, Saya Admin Chatbot. Saya sedia chat dengan anda secara terus. Bagaimana saya boleh membantu anda?

Click the button below to interact with the CSM chatbot

Proceed