Update Zoom Workplace for Windows to address critical security vulnerability
Zoom has released security updates to address a critical vulnerability affecting some Windows versions of Zoom Workplace. The vulnerability, tracked as CVE-2026-53412, could allow an unauthenticated attacker to take over an affected Zoom account through network access.
OIT encourages all users and administrators with affected Windows clients to update Zoom as soon as possible. Zoom has rated this issue as critical and recommends applying the latest available updates to reduce risk.
Who is affected
Zoom Workplace for Windows before version 7.0.0
What you need to do
Update Zoom Workplace to version 7.0.0 or later as soon as possible.
To check for updates, open the Zoom Workplace desktop app, select your profile picture, and choose Check for Updates. Additional information on how to update can be found on Zoom’s website.
Devices managed by Buff Techs Pro and Secure Computing devices are not impacted. Visit this OIT webpage to determine if you have a Secure Computing device.
If you need help updating Zoom or are unsure whether your device is affected, please contact the IT Service Center at OITHelp@colorado.edu or 303-735-4357 or your department's IT support team for assistance.
Concerned about your personal device?
https://oit.colorado.edu/software-hardware/secure-computing/self-service
For the latest updates, review Zoom’s security bulletin. BleepingComputer also has a helpful article with guidance.