CVE-2023-28803
Traffic being bypassed by ZCC by configuring synthetic IP range as local network
An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
Produtos afetados
Zscaler · Client ConnectorQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →