The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges.
References
Link | Resource |
---|---|
https://trust.zscaler.com/posts/7316 | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2021-02-16 20:15
Updated : 2024-02-04 21:23
NVD link : CVE-2020-11635
Mitre link : CVE-2020-11635
CVE.ORG link : CVE-2020-11635
JSON object : View
Products Affected
zscaler
- client_connector
CWE