CVE-2025-27440

Published Mar 11, 2025

Last updated 3 months ago

CVSS high 8.5

Overview

Description
Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
8.5
Impact score
6
Exploitability score
1.8
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security@zoom.us
CWE-124

Social media

Hype score
Not currently trending

  1. به تازگی آسیب پذیری جدیدی با کد شناسایی (CVE-2025-27440) برای برنامه Zoom منتشر شده است.‌این آسیب پذیری از نوع buffer overflow بوده است. برای پیشگیری و مقابله با این تهدید ، به روز رسانی لازم را اعمال نمایید. https://t.co/Poz3aKY03t https://t.co/DvOYN6NV0F

    @AmirHossein_sec

    15 Mar 2025

    18 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 Security Fix: Zoom patches CVE-2025-27440, CVE-2025-27439 & more! ⚠️ Update Workplace Apps & SDKs now to prevent privilege escalation & DoS attacks. #Deepweb #Darkweb More breaking news from the world and the Darkweb here: https://t.co/ZF7G3lwjoe https://t.co/cAA3S

    @godeepweb

    13 Mar 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Zoom Patches 4 High-Severity Vulnerabilities Critical flaws in Zoom Workplace, Rooms & Meeting SDK allow privilege escalation & DoS attacks (CVE-2025-27440, CVE-2025-27439 & more). Update to v6.3.0 ASAP to stay secure! https://t.co/3NHtLFwXG6 #CyberSecurity #Upda

    @dCypherIO

    13 Mar 2025

    13 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. 🚨 CVE-2025-27440 🔴 HIGH (8.5) 🏢 Zoom Communications, Inc - Zoom Workplace Apps 🏗️ See references. 🔗 https://t.co/Rnby86NMb2 #CyberCron #VulnAlert #InfoSec https://t.co/WL3IMO0nH2

    @cybercronai

    13 Mar 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 🚨 Multiple Zoom Client Vulnerabilities Exposes Sensitive Data Read more: https://t.co/rlBDecVPUe The most critical flaws, patched in Zoom’s March 11, 2025, security bulletin, include 📌 CVE-2025-27440 (heap-based buffer overflow) 📌 CVE-2025-27439 (buffer underflow) 📌… http

    @The_Cyber_News

    13 Mar 2025

    375 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.