CVE-2026-30906

Daily digests

The Zoom Rooms installer for Windows before version 7.0.0 searches for libraries in untrusted directories. A local attacker who can place a malicious DLL in the right path can escalate privileges when the installer runs. This requires local access and an authenticated user to trigger the install, so remote exploitation isn't a factor.

• Daily Digest · May 14, 2026

  OpenTelemetry Azure auth bypass + SOGo SQL injection