CVE-2026-53406

Published Jun 12, 2026

Last updated a day ago

CVSS high 7.8

Overview

Description
Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access.
Source
security@zoom.us
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.8
Impact score
5.9
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

security@zoom.us
CWE-345

Social media

Hype score
Not currently trending

  1. Warning: High severity Privilege Escalation vulnerabilities in #Zoom products (Windows & Mobile clients). CVE-2026-53407, CVE-2026-53408 & CVE-2026-53406. https://t.co/tXcTGr1mIy, https://t.co/WBb9jcf5xH #patch #patch #patch #EoP

    @CCBalert

    10 Jun 2026

    172 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.