CVE-2025-30670

Summary

CVE-2025-30670 is a recently disclosed vulnerability affecting some Zoom Workplace Apps for Windows. This issue involves a null pointer dereference, which can be exploited by an authenticated user to cause a denial of service (DoS) attack via network access. The vulnerability arises when the application fails to properly check for null pointers in certain conditions, leading to unexpected behavior and potential crashes. An attacker can take advantage of this to overwhelm the targeted system with repeated DoS attempts, rendering it unavailable to legitimate users. Users are encouraged to update their Zoom applications to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.