CVE-2024-23464

In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows <4.2.1
Configurations

Configuration 1 (hide)

cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*

History

07 Aug 2024, 21:23

Type Values Removed Values Added
CPE cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
CWE NVD-CWE-noinfo
References () https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=Windows&applicable_version=4.2.1 - () https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=Windows&applicable_version=4.2.1 - Vendor Advisory
Summary
  • (es) En ciertos casos, Zscaler Internet Access (ZIA) se puede desactivar mediante comandos de PowerShell con derechos de administrador. Esto afecta a Zscaler Client Connector en Windows &lt;4.2.1
CVSS v2 : unknown
v3 : 7.2
v2 : unknown
v3 : 4.9
First Time Zscaler client Connector
Zscaler

06 Aug 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-06 16:15

Updated : 2024-08-07 21:23


NVD link : CVE-2024-23464

Mitre link : CVE-2024-23464

CVE.ORG link : CVE-2024-23464


JSON object : View

Products Affected

zscaler

  • client_connector
CWE
NVD-CWE-noinfo CWE-281

Improper Preservation of Permissions