CVE-2026-30904

Description

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access.

CVSS Details

CVSS Score

1.8

Severity

LOW

CVSS Vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Configurations (Affected Products)

No configuration data available.

Zoom Workplace for iOS < 7.0.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

#!/usr/bin/env python3
"""
PoC for CVE-2026-30904
Zoom Workplace for iOS < 7.0.0 Information Disclosure
This script simulates checking for the vulnerability condition.
"""

import os

VULNERABLE_VERSION = "7.0.0"
TARGET_APP_BUNDLE_ID = "us.zoom.videomeetings"
# Hypothetical path where sensitive data might be exposed due to protection failure
SENSITIVE_DATA_PATH = "/var/mobile/Containers/Data/Application/{UUID}/Library/Caches/SensitiveCache.db"

def is_vulnerable(version):
    """Check if the installed version is vulnerable."""
    return version < VULNERABLE_VERSION

def check_info_disclosure():
    """
    Simulates the exploitation scenario.
    Requires physical access and authenticated context.
    """
    print("[+] Attempting to access sensitive data...")
    # In a real physical access scenario, an attacker might mount the filesystem
    # or use a tool like Frida to bypass protections and read this file.
    if os.path.exists(SENSITIVE_DATA_PATH):
        print(f"[!] Vulnerability Confirmed: Sensitive data exposed at {SENSITIVE_DATA_PATH}")
        return True
    else:
        print("[-] Path not found or protection mechanism active.")
        return False

if __name__ == "__main__":
    current_version = "6.5.0" # Example vulnerable version
    if is_vulnerable(current_version):
        print(f"[+] Target is vulnerable (Version: {current_version})")
        check_info_disclosure()
    else:
        print("[-] Target is not vulnerable.")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-30904
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-30904
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-30904/
[4] VulDB https://vuldb.com/cve/CVE-2026-30904
[5] https://www.zoom.com/en/trust/security-bulletin/zsb-26006

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-30904", "sourceIdentifier": "[email protected]", "published": "2026-05-13T19:17:05.210", "lastModified": "2026-05-14T18:15:05.433", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "baseScore": 1.8, "baseSeverity": "LOW", "attackVector": "PHYSICAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.3, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-693"}]}], "references": [{"url": "https://www.zoom.com/en/trust/security-bulletin/zsb-26006", "source": "[email protected]"}]}}