Time-of-check Time-of-use (TOCTOU) Race Condition in Zoom Video Communications, Inc. products - CVE-2026-53410
Published: July 14, 2026
Zoom Workplace Desktop App for Windows
Zoom Rooms Client for Windows
Virtual Desktop Infrastructure (VDI)
Remote Control for Zoom Contact Center for Windows
Detailed vulnerability description
The vulnerability allows a local user to escalate privileges.
The vulnerability exists due to a time-of-check to time-of-use race condition in the installation and uninstallation process when handling installation or uninstallation operations. A local user can trigger the race condition during installation or uninstallation to escalate privileges.