CVE-2025-46788CRITICAL 9.1EPSS p14.4%

CVE-2025-46788CVE-2025-46788

Description

Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.24% probability of exploitation · percentile 14.4% · 2026-06-18T12:00:27Z
Published2025-07-10
Last modified2025-08-05

Underlying weaknesses· 1

CWE-295

References

  1. https://https://www.zoom.com/en/trust/security-bulletin/zsb-25023/

1

TypeTargetConfidenceTier
WeaknessImproper Certificate Validationcwe-2950%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-64741
CVE
CVE-2025-62484
CVE
CVE-2025-0147
CVE
CVE-2025-27439
CVE
CVE-2025-27440
CVE
CVE-2025-49457
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.