CRITICAL: Zoom Windows Account Takeover Flaw Scores a 9.8 (CVE-2026-53412)
Zoom disclosed CVE-2026-53412, a critical CVSS 9.8 improper input validation flaw in its Windows software that lets an unauthenticated attacker take over an account over the network with no user interaction. It affects Zoom Workplace, the VDI Client, and the Meeting SDK for Windows. No exploitation has been observed yet, so patch before that changes.