A newly disclosed vulnerability in Zoom Workplace Apps (tracked as CVE-2025-27441 and CVE-2025-27442) allows attackers to inject malicious scripts via cross-site scripting (XSS) flaws, posing risks to millions of users globally. The medium-severity vulnerability, with a CVSS score of 4.6, enables unauthenticated attackers on adjacent networks to compromise meeting integrity by executing arbitrary code. Zoom […]

The post Zoom Workplace Apps Vulnerability Enables Malicious Script Injection Through XSS Flaws appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Gurubaran

Source: gbHackers
Source Link: https://gbhackers.com/zoom-workplace-apps-vulnerability/