Описание
An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service restart from Zscaler Diagnostics. This issue affects Client Connector: before 4.2.0.149.
Ссылки
- Release Notes
- Release Notes
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.0.149 (исключая)
cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
EPSS
Процентиль: 26%
0.00088
Низкий
4.9 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-354
CWE-354
Связанные уязвимости
CVSS3: 4.9
github
около 2 лет назад
An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service restart from Zscaler Diagnostics. This issue affects Client Connector: before 4.2.0.149.
EPSS
Процентиль: 26%
0.00088
Низкий
4.9 Medium
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-354
CWE-354