CVE-2025-0151 HIGH

CVE-2025-0151: Zoom Apps - Use After Free

Vendor Zoom Communications, Inc
Product Zoom Workplace Apps
Weakness CWE-416
Published March 11, 2025
Last update March 11, 2025

CVSS base score

8.5/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.

Key dates

02Disclosure timeline

March 11, 2025 CVE published
March 11, 2025 Record updated