Zoom Security Update – 10 June 2026

Zoom has released a security update to fix multiple vulnerabilities affecting several Zoom products.

The addressed vulnerabilities could allow the attacker to gain elevated privileges on the affected system.

Sample of the addressed vulnerabilities:

Zoom Workplace Mobile Clients – Improper Authorization in Handler for Custom URL Scheme Vulnerability (CVE-2026-53407):

  • CVSS: 8.1
  • Attack Vector: Network
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: Required
  • Consequences: Gain Privileges

The affected products:

  • Zoom Workplace for Android before version 7.0.4.
  • Zoom Workplace for iOS before version 7.0.3.
  • Zoom Meeting SDK for Android before version 7.0.4.
  • Zoom Meeting SDK for iOS before version 7.0.3.
  • Remote Control for Zoom Contact Center for Windows before version 7.0.0.
Vulnerabilities
  • CVE-2026-53406
  • CVE-2026-53407
  • CVE-2026-53408
Mitigations

The enterprise should deploy this patch as soon as the testing phase is completed.

Zoom Security Advisory

References