CVE-2025-49463

Published Jul 10, 2025

Last updated 3 days ago

CVSS medium 6.5

Overview

Description: Insufficient control flow management in certain Zoom Clients for iOS before version 6.4.5 may allow an unauthenticated user to conduct a disclosure of information via network access.
Source: security@zoom.us
NVD status: Awaiting Analysis

Risk scores

CVSS 3.1

Type: Secondary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Severity: MEDIUM

Weaknesses

security@zoom.us: CWE-691

Hype score: Not currently trending

CVE-2025-49463 Insufficient control flow management in certain Zoom Clients for iOS before version 6.4.5 may allow an unauthenticated user to conduct a disclosure of information via… https://t.co/27s0V5iENs
@CVEnew
10 Jul 2025
393 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References

Sources include official advisories and independent security research.