CVE-2025-27439

Published Mar 11, 2025

Last updated 3 months ago

CVSS high 8.5

Overview

Description
Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.5
Impact score
6
Exploitability score
1.8
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security@zoom.us
CWE-124

Social media

Hype score
Not currently trending

  1. 🚨 Security Fix: Zoom patches CVE-2025-27440, CVE-2025-27439 & more! ⚠️ Update Workplace Apps & SDKs now to prevent privilege escalation & DoS attacks. #Deepweb #Darkweb More breaking news from the world and the Darkweb here: https://t.co/ZF7G3lwjoe https://t.co/cAA3S

    @godeepweb

    13 Mar 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Zoom Patches 4 High-Severity Vulnerabilities Critical flaws in Zoom Workplace, Rooms & Meeting SDK allow privilege escalation & DoS attacks (CVE-2025-27440, CVE-2025-27439 & more). Update to v6.3.0 ASAP to stay secure! https://t.co/3NHtLFwXG6 #CyberSecurity #Upda

    @dCypherIO

    13 Mar 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨 CVE-2025-27439 🔴 HIGH (8.5) 🏢 Zoom Communications, Inc - Zoom Workplace Apps 🏗️ See references. 🔗 https://t.co/Rnby86NMb2 #CyberCron #VulnAlert #InfoSec https://t.co/6k9O03n5qO

    @cybercronai

    13 Mar 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 Multiple Zoom Client Vulnerabilities Exposes Sensitive Data Read more: https://t.co/rlBDecVPUe The most critical flaws, patched in Zoom’s March 11, 2025, security bulletin, include 📌 CVE-2025-27440 (heap-based buffer overflow) 📌 CVE-2025-27439 (buffer underflow) 📌… http

    @The_Cyber_News

    13 Mar 2025

    375 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  5. Zoom users! CVE-2025-27439 (CVSS 8.5) exposes pre-6.3.0 apps to privilege escalation risks. Low exploit odds (0.04% EPSS), but HIGH impact. Update to 6.3.0 NOW: https://t.co/rG4oqua2OU #CyberSec #Zoom #TechAlert

    @threatsbank

    12 Mar 2025

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-27439 Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. https://t.co/V2k4jUo5IK

    @CVEnew

    11 Mar 2025

    100 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.