1.0 Introduction
Recently, Zoom has issued a security update to address several high and medium severity vulnerabilities across Zoom Workplace Clients, Android, Windows, macOS, and VDI products.
2.0 Impact
These vulnerabilities could allow attackers to execute arbitrary code, bypass authorization, or access sensitive information.
3.0 Affected Products
High-Severity Vulnerabilities
- CVE-2025-62484 – Zoom Workplace Clients
- CVE-2025-64741 – Zoom Workplace for Android
- CVE-2025-64740 – Zoom Workplace VDI Client for Windows
Medium-Severity Vulnerabilities
- CVE-2025-62483 – Zoom Clients
- CVE-2025-62482 – Zoom Workplace for Windows
- CVE-2025-30662 – Zoom Workplace VDI Plugin macOS Universal Installer
- CVE-2025-30669 – Zoom Workplace Clients
- CVE-2025-64739 – Zoom Clients
- CVE-2025-64738 – Zoom Workplace for macOS
-
CVE-2025-30670, CVE-2025-30671
– Zoom Workplace Apps for Windows
4.0 Recommendations
CyberSecurity Malaysia encourages users and administrators to review the Zoom Security Bulletin and upgrade to the latest version.
Kindly refer to the URL for more information:
- https://www.zoom.com/en/trust/security-bulletin/zsb-25048/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25043/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25042/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25047/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25046/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25045/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25044/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25041/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25040/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25015/
Generally, CyberSecurity Malaysia advises the users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact us through the following channels:
E-mail: cyber999[at]cybersecurity.my
Phone: 1-300-88-2999 (monitored during business hours)
Mobile: +60 19 2665850 (24x7 call incident reporting)
Business Hours: Mon - Fri 08:30 -17:30 MYT
Web:
https://www.cybersecurity.my
5.0 References
- https://www.zoom.com/en/trust/security-bulletin/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25048/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25043/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25042/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25047/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25046/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25045/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25044/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25041/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25040/
- https://www.zoom.com/en/trust/security-bulletin/zsb-25015/