Zoom Rooms for Windows – Software Downgrade Protection Mechanism Failure

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via local access.

Basic Information

ID CVE-2025-67460

Source Zoom

Published Dec 10, 2025 at 20:37

Affected Product

Vendor Zoom Communications Inc.

Product Zoom Rooms

Affected Versions Zoom Communications Inc. Zoom Rooms 0

CWE Classification

CWE-693

References

www.zoom.com /en/trust/security-bulletin/zsb-25050

{
    "lastseen": "",
    "description": "Protection Mechanism Failure of Software Downgrade in Zoom Rooms for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via local access.",
    "published": "2025-12-10T20:37:03.144Z",
    "modified": "2025-12-10T20:37:03.144Z",
    "type": "cve",
    "title": "Zoom Rooms for Windows - Software Downgrade Protection Mechanism Failure",
    "source": "Zoom",
    "references": "https://www.zoom.com/en/trust/security-bulletin/zsb-25050",
    "id": "CVE-2025-67460",
    "bulletinFamily": "",
    "cwe": [
        "CWE-693"
    ],
    "cvelist": null,
    "sourceData": "Zoom Communications Inc. Zoom Rooms 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Zoom Rooms",
    "version": "0",
    "vendor": "Zoom Communications Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Zoom Rooms for Windows – Software Downgrade Protection Mechanism Failure_CVE-2025-67460