exploitDog

GHSA-cr8h-8gv8-gxxv

Опубликовано: 23 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the PATH variable. A local adversary may be able to execute code with root privileges.

Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the PATH variable. A local adversary may be able to execute code with root privileges.

Ссылки

EPSS

Процентиль: 11%

0.00038

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-426

Связанные уязвимости

CVE-2021-26738

CVSS3: 7.8

nvd

больше 2 лет назад

Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the PATH variable. A local adversary may be able to execute code with root privileges.

EPSS

Процентиль: 11%

0.00038

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-426