Full Report
A security vulnerability has been discovered in Zoom Workplace’s VDI Client for Windows that could allow attackers to escalate their privileges on affected systems. The flaw, tracked as CVE-2025-64740 and assigned bulletin ZSB-25042, has been rated as High severity with a CVSS score of 7.5. Attribute Details CVE ID CVE-2025-64740 Bulletin ID ZSB-25042 Product Zoom Workplace VDI […] The post Zoom Workplace for Windows Flaw Allows Local Privilege Escalation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Analysis Summary
# Vulnerability: Local Privilege Escalation in Zoom Workplace VDI Client for Windows
## CVE Details
- CVE ID: CVE-2025-64740
- CVSS Score: 7.5 (High)
- CWE: Improper Verification of Cryptographic Signature
## Affected Systems
- Products: Zoom Workplace VDI Client for Windows
- Versions: All versions prior to 6.3.14, 6.4.12, and 6.5.10 (affects all earlier releases across these respective tracks).
- Configurations: Any system running the vulnerable VDI Client.
## Vulnerability Description
The vulnerability exists within the Zoom Workplace VDI Client installer due to **Improper Verification of Cryptographic Signatures**. This flaw allows a local attacker who already has user access to escalate their privileges to an administrator level by manipulating installation files, as the installer fails to properly verify the legitimacy of these files before execution.
## Exploitation
- Status: No specific exploitation status mentioned (assumed PoC may be available given the research finding, but no details provided).
- Complexity: Local access required.
- Attack Vector: Local
## Impact
- Confidentiality: Potential for high impact due to elevated access allowing data access.
- Integrity: High, as an attacker can execute arbitrary code with elevated permissions.
- Availability: Potential impact if system integrity is compromised.
## Remediation
### Patches
- Organisations must update to the patched versions released by Zoom. These include:
- Version 6.3.14 or later
- Version 6.4.12 or later
- Version 6.5.10 or later
### Workarounds
- No specific workarounds were detailed in the summary, but the primary mitigation is updating the software immediately.
## Detection
- Detection relies on monitoring for execution of installation binaries from unusual paths or unexpected privilege elevation events following interaction with the VDI client or its installers.
## References
- Vendor Advisory: hxxps://www.zoom.com/en/trust/security-bulletin/zsb-25042/?lang=en-US
- Bulletin ID: ZSB-25042