CVE-2025-30662 — MEDIUM (6.6)

Q: How severe is CVE-2025-30662?

CVE-2025-30662 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-30662?

Check the references section above for vendor advisories and patch information. Affected products include: Zoom Workplace Virtual Desktop Infrastructure.

Vulnerability Description

Symlink following in the installer for the Zoom Workplace VDI Plugin macOS Universal installer before version 6.3.14, 6.4.14, and 6.5.10 in their respective tracks may allow an authenticated user to conduct a disclosure of information via network access.

CVSS Score

6.6

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Zoom	Workplace Virtual Desktop Infrastructure	< 6.3.14

Related Weaknesses (CWE)

CWE-646

References

https://www.zoom.com/en/trust/security-bulletin/zsb-25045Vendor Advisory

FAQ

What is CVE-2025-30662?

CVE-2025-30662 is a vulnerability with a CVSS score of 6.6 (MEDIUM). Symlink following in the installer for the Zoom Workplace VDI Plugin macOS Universal installer before version 6.3.14, 6.4.14, and 6.5.10 in their respective tracks may allow an authenticated user to c...

How severe is CVE-2025-30662?

CVE-2025-30662 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-30662?

Check the references section above for vendor advisories and patch information. Affected products include: Zoom Workplace Virtual Desktop Infrastructure.