CVE-2026-30903

External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access.

CVSS v3 9.6 CRITICAL

9.6^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 2.8 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.zoom.com/en/trust/security-bulletin/zsb-26005	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zoom:workplace_desktop::::::windows::*
	cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure::::::windows::*
	cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure::::::windows::*
	cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure::::::windows::*

History

14 May 2026, 20:27

Type	Values Removed	Values Added
First Time		Zoom Zoom workplace Virtual Desktop Infrastructure Zoom workplace Desktop
CWE		CWE-610
References	~~() https://www.zoom.com/en/trust/security-bulletin/zsb-26005 -~~	() https://www.zoom.com/en/trust/security-bulletin/zsb-26005 - Vendor Advisory
CPE		cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure::::::windows::* cpe:2.3:a:zoom:workplace_desktop::::::windows::*
Summary		(es) El control externo del nombre o la ruta del archivo en la función de Correo de Zoom Workplace para Windows anterior a 6.6.0 puede permitir a un usuario no autenticado realizar una escalada de privilegios a través de acceso a la red.

11 Mar 2026, 15:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-11 15:16

Updated : 2026-05-14 20:27

NVD link : CVE-2026-30903

Mitre link : CVE-2026-30903

CVE.ORG link : CVE-2026-30903

JSON object : View

Products Affected

zoom

workplace_desktop
workplace_virtual_desktop_infrastructure

CWE

CWE-73

External Control of File Name or Path

CWE-610

Externally Controlled Reference to a Resource in Another Sphere

{"id": "CVE-2026-30903", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@zoom.us", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2026-03-11T15:16:30.247", "references": [{"url": "https://www.zoom.com/en/trust/security-bulletin/zsb-26005", "tags": ["Vendor Advisory"], "source": "security@zoom.us"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@zoom.us", "description": [{"lang": "en", "value": "CWE-73"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-610"}]}], "descriptions": [{"lang": "en", "value": "External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access."}, {"lang": "es", "value": "El control externo del nombre o la ruta del archivo en la funci\u00f3n de Correo de Zoom Workplace para Windows anterior a 6.6.0 puede permitir a un usuario no autenticado realizar una escalada de privilegios a trav\u00e9s de acceso a la red."}], "lastModified": "2026-05-14T20:27:29.567", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zoom:workplace_desktop:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "A3EE609B-F6E5-4609-9B8F-D08EADBB758F", "versionEndExcluding": "6.6.0"}, {"criteria": "cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "381DB0B3-70FC-48C4-B750-82AF92E62163", "versionEndExcluding": "6.4.17", "versionStartIncluding": "6.4.0"}, {"criteria": "cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "65AD7FFA-9630-45B0-9C14-197307FF3240", "versionEndExcluding": "6.5.15", "versionStartIncluding": "6.5.0"}, {"criteria": "cpe:2.3:a:zoom:workplace_virtual_desktop_infrastructure:*:*:*:*:*:windows:*:*", "vulnerable": true, "matchCriteriaId": "8B8997EA-D65A-4A34-B172-2AE91CDB3422", "versionEndExcluding": "6.6.10", "versionStartIncluding": "6.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@zoom.us"}