CVE-2026-30906

Awaiting Analysis Awaiting Analysis - Queue

BaseFortify

Publication date: 2026-05-13

Last updated on: 2026-05-14

Assigner: Zoom Video Communications, Inc.

Description

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-05-13

Last Modified

2026-05-14

Generated

2026-05-20

EPSS Evaluated

2026-05-19

NVD

CVE-2026-30906

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-426	The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

Attack-Flow Graph

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2026-30906

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

Ask Our AI Assistant

EPSS Chart