BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Zoom Patches Critical Account Takeover Flaw in Windows Clients

Zoom patches critical 9.8 flaw allowing unauthenticated account takeover

  • Zoom released a critical security update for a flaw (CVE-2026-53412, CVSS 9.8) that could allow unauthenticated account takeover via network access.
  • Three additional high-severity vulnerabilities were patched, including privilege escalation and race condition flaws in Zoom Workplace and Rooms for Windows.
  • No active exploitation has been detected, but users are urged to apply the latest updates immediately.

Zoom has released emergency security updates for a critical vulnerability in Zoom Workplace for Windows that could allow attackers to take over accounts without authentication. The flaw, tracked as CVE-2026-53412 with a CVSS score of 9.8, affects Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows.

- Advertisement -

According to an advisory from Zoom, the issue stems from improper input validation that may allow an unauthenticated user to conduct account takeover via network access. The company also addressed three high-severity flaws in the same update cycle.

CVE-2026-53411 (CVSS 7.8) is an improper input validation vulnerability in the Zoom Workplace VDI Plugin for Windows before version 6.6.14, which could allow an authenticated user to escalate privileges via local access. Meanwhile, CVE-2026-53410 (CVSS 7.0) is a time-of-check to time-of-use race condition in the installation and uninstallation process of certain Zoom Clients for Windows that could enable privilege escalation.

CVE-2026-53409 (CVSS 7.8) affects Zoom Rooms for Windows before version 7.1.0, involving improper privilege management that may allow an authenticated user to escalate privileges locally. The race condition flaw impacts multiple products, including Zoom Workplace for Windows before version 7.0.5, Zoom Workplace VDI Client and plugin for Windows, as well as Zoom Rooms and Remote Control for Zoom Contact Center.

As of writing, there are no indications that any of the flaws are being exploited in real-world attacks. Users can stay protected by applying the latest updates.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

BlackRock CEO Bullish on Bitcoin, Dismisses Leverage Fears

BlackRock CEO Larry Fink states he is not concerned about excessive leverage in Bitcoin...

Trump to meet senators on crypto market bill progress

President Donald Trump will meet with senators Thursday to discuss the CLARITY Act, the...

AI-Assisted TuxBot v3 IoT Botnet Found Riddled With Errors

Cybersecurity researchers at Palo Alto Networks Unit 42 discovered a new IoT botnet framework...

OpenAI’s GPT-Red automates AI security testing

OpenAI introduced GPT-Red, an automated AI system to find vulnerabilities in GPT models before...

Trump to Meet Senators on Crypto Ethics; Bill Near Final

President Donald Trump is scheduled to meet with senators Thursday to negotiate the unresolved...

Must Read

10 BEST Companies to Buy Hosting With Bitcoin And Crypto

If you are looking to buy hosting with bitcoin or cryptocurrency then you've come to the right place.I've done the research for you...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading