CVE-2025-46788 HIGH

CVE-2025-46788: Zoom Workplace for Linux - Improper Certificate Validation

Vendor Zoom Communications Inc.
Product Zoom Workplace for Linux
Weakness CWE-295
Published July 10, 2025
Last update July 10, 2025

CVSS base score

7.4/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access.

Key dates

02Disclosure timeline

July 10, 2025 CVE published
July 10, 2025 Record updated