CVE-2026-53411

Summary

A time-of-check to time-of-use (TOCTOU) race condition in the installation and uninstallation process of certain Zoom Clients for Windows could allow an authenticated local user to escalate privileges.

Affected Software

VendorProductVersion RangeStatus
Zoom CommunicationsZoom Workplace VDI Plugin0 < 6.6.14affected

Weaknesses

  • CWE-20: CWE-20 Improper input validation

References