Main Vulnerability Database SB2026031048

SB2026031048 - Missing integrity check in Zoom Workplace Clients for Windows

Published: March 10, 2026

Security Bulletin ID SB2026031048

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Missing support for integrity check (CVE-ID: CVE-2026-30900)

CWE-ID: CWE-353 - Missing Support for Integrity Check

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists in the update functionality due to software does not check if the version to be installed is newer than the current version. A local user can downgrade current software version and exploit known vulnerabilities in it.

Remediation

Install update from vendor's website.

References

https://www.zoom.com/en/trust/security-bulletin/ZSB-26002/