general · BleepingComputer
Zoom has disclosed a critical vulnerability (CVE-2026-53412, CVSS 9.8) in its Windows desktop client, VDI Client, and Meeting SDK that could allow unauthenticated users to conduct account takeover attacks over the network. The flaw stems from improper input validation. The company has not disclosed technical details but recommends users apply the latest patches to affected versions: Zoom Workplace for Windows before 7.0.0, Windows VDI Client before 7.0.10/6.6.15/6.5.18, and Meeting SDK for Windows before 7.0.0. Zoom also patched three additional high-severity flaws affecting privilege escalation and race conditions. At disclosure, there were no reports of active exploitation.
For Omniware's buyers, this vulnerability carries immediate risk because Zoom Workplace is widely deployed across defense contractors, healthcare providers, SaaS teams, and financial services firms—all handling sensitive data and subject to CMMC, HIPAA, SOC2, and NIST 800-171 controls. An unauthenticated account takeover could compromise compliance posture by enabling unauthorized access to communications, CUI, PHI, and customer data. Organizations relying on Zoom should prioritize immediate patching and audit access logs for suspicious activity post-update. An Omniware engagement can scope inventory, patch-readiness assessments, and compensating controls to ensure compliance alignment during remediation.
Source: BleepingComputer - https://www.bleepingcomputer.com/news/security/zoom-warns-of-critical-account-takeover-vulnerability/
Source: BleepingComputer
All briefings