CVE-2025-27440

Published Mar 11, 2025

Last updated 24 days ago

CVSS high 8.5

Overview

Description
Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.5
Impact score
6
Exploitability score
1.8
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security@zoom.us
CWE-124

Social media

Hype score
Not currently trending

  1. به تازگی آسیب پذیری جدیدی با کد شناسایی (CVE-2025-27440) برای برنامه Zoom منتشر شده است.‌این آسیب پذیری از نوع buffer overflow بوده است. برای پیشگیری و مقابله با این تهدید ، به روز رسانی لازم را اعمال نمایید. https://t.co/Poz3aKY03t https://t.co/DvOYN6NV0F

    @AmirHossein_sec

    15 Mar 2025

    18 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 Security Fix: Zoom patches CVE-2025-27440, CVE-2025-27439 & more! ⚠️ Update Workplace Apps & SDKs now to prevent privilege escalation & DoS attacks. #Deepweb #Darkweb More breaking news from the world and the Darkweb here: https://t.co/ZF7G3lwjoe https://t.co/cAA3S

    @godeepweb

    13 Mar 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Zoom Patches 4 High-Severity Vulnerabilities Critical flaws in Zoom Workplace, Rooms & Meeting SDK allow privilege escalation & DoS attacks (CVE-2025-27440, CVE-2025-27439 & more). Update to v6.3.0 ASAP to stay secure! https://t.co/3NHtLFwXG6 #CyberSecurity #Upda

    @dCypherIO

    13 Mar 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 CVE-2025-27440 🔴 HIGH (8.5) 🏢 Zoom Communications, Inc - Zoom Workplace Apps 🏗️ See references. 🔗 https://t.co/Rnby86NMb2 #CyberCron #VulnAlert #InfoSec https://t.co/WL3IMO0nH2

    @cybercronai

    13 Mar 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 🚨 Multiple Zoom Client Vulnerabilities Exposes Sensitive Data Read more: https://t.co/rlBDecVPUe The most critical flaws, patched in Zoom’s March 11, 2025, security bulletin, include 📌 CVE-2025-27440 (heap-based buffer overflow) 📌 CVE-2025-27439 (buffer underflow) 📌… http

    @The_Cyber_News

    13 Mar 2025

    375 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

References