CVE Catalog

CVE-2026-53406

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.08%

0th percentile - higher than 0% of all known CVEs

Summary

Insufficient verification of data authenticity in the remote control feature of Zoom Contact Center for Windows before version 7.0.0 may allow an authenticated user to escalate privileges via local access.

Risk Assessment

The risk involves an authenticated user potentially gaining higher privileges on the system, which could lead to unauthorized access to sensitive data or application takeover.

Recommendation

Immediately update Zoom Contact Center for Windows to version 7.0.0 or later, which includes a fix for this vulnerability.

Original NVD description (English source)

Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS