Zoom for Windows may let malicious users gain more control

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Zoom for Windows may let malicious users gain more control

CVE-2026-30902

Summary

Some Zoom clients on Windows machines can be exploited by authenticated users to gain higher levels of control on the system. This could allow unauthorized access to sensitive data and actions. Update Zoom to the latest version and ensure your users have the most up-to-date software to minimize this risk.

Original title

Improper Privilege Management in certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

Original description

Improper Privilege Management in certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

nvd CVSS3.1 7.8

Vulnerability type

CWE-269 Improper Privilege Management

https://www.zoom.com/en/trust/security-bulletin/zsb-26004

Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026