Описание
An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.
Уязвимые конфигурации
Конфигурация 1Версия до 3.9 (исключая)
cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
EPSS
Процентиль: 0%
0.00007
Низкий
5.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-290
CWE-290
Связанные уязвимости
CVSS3: 5.9
github
больше 2 лет назад
An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.
EPSS
Процентиль: 0%
0.00007
Низкий
5.9 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-290
CWE-290