An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows <4.2.0.190.
References
Configurations
History
07 Aug 2024, 21:29
Type | Values Removed | Values Added |
---|---|---|
First Time |
Zscaler client Connector
Zscaler |
|
CPE | cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
Summary |
|
|
References | () https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows&applicable_version=4.2.0.190 - Vendor Advisory |
06 Aug 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-06 16:15
Updated : 2024-08-07 21:29
NVD link : CVE-2023-28806
Mitre link : CVE-2023-28806
CVE.ORG link : CVE-2023-28806
JSON object : View
Products Affected
zscaler
- client_connector
CWE
CWE-347
Improper Verification of Cryptographic Signature