CVE-2023-28803
Traffic being bypassed by ZCC by configuring synthetic IP range as local network
An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
Productos afectados
Zscaler · Client Connector¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →