CVE-2025-27439
HIGHDescription
Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access.
Is your site exposed to CVE-2025-27439?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| zoom | meeting_software_development_kit |
| zoom | meeting_software_development_kit |
| zoom | meeting_software_development_kit |
| zoom | meeting_software_development_kit |
| zoom | meeting_software_development_kit |
| zoom | rooms |
| zoom | rooms |
| zoom | rooms |
| zoom | rooms |
| zoom | rooms_controller |
| zoom | rooms_controller |
| zoom | rooms_controller |
| zoom | rooms_controller |
| zoom | workplace |
| zoom | workplace |
| zoom | workplace_desktop |
| zoom | workplace_desktop |
| zoom | workplace_desktop |
| zoom | workplace_virtual_desktop_infrastructure |
| zoom | workplace_virtual_desktop_infrastructure |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-27439? +
How severe is CVE-2025-27439? +
What products are affected by CVE-2025-27439? +
How do I check if I'm vulnerable to CVE-2025-27439? +
Related Vulnerabilities
Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out …
Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. This issue affects Apache HTTP Server: …
A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through …
Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network …
A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in …
Wazuh is a free and open source platform used for threat prevention, detection, and response. A heap-based out-of-bounds WRITE occurs …