Zoom Client: Improper Min Ver Check in Update Local Priv Escalation
CVE-2026-30900 Published on March 11, 2026

Zoom Workplace Clients for Windows - Improper Check
Improper Check of minimum version in update functionality of certain Zoom Clients for Windows may allow an authenticated user to conduct an escalation of privilege via local access.

NVD

Vulnerability Analysis

CVE-2026-30900 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Improper Check for Unusual or Exceptional Conditions

The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

Products Associated with CVE-2026-30900

Want to know whenever a new CVE is published for Zoom Workplace? stack.watch will email you.

Zoom Workplace

Affected Versions

Zoom Communications Inc. Zoom Workplace:

Version 6.6.0 and below 6.6.11 is affected.

Zoom Client: Improper Min Ver Check in Update Local Priv EscalationCVE-2026-30900 Published on March 11, 2026

Vulnerability Analysis

Weakness Type

Improper Check for Unusual or Exceptional Conditions

Products Associated with CVE-2026-30900

Affected Versions

Zoom Client: Improper Min Ver Check in Update Local Priv Escalation
CVE-2026-30900 Published on March 11, 2026