exploitDog

CVE-2023-41970

Опубликовано: 02 мая 2024

Источник: nvd

CVSS3: 6

CVSS3: 7.8

EPSS Низкий

Описание

An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on Windows during the Repair App functionality may allow Local Execution of Code.This issue affects Client Connector on Windows: before 4.1.0.62.

Ссылки

https://help.zscaler.com/client-connector/client-connector-app-release-summary-2022?applicable_category=windows&applicable_version=4.1
Vendor Advisory
Release Notes
https://help.zscaler.com/client-connector/client-connector-app-release-summary-2022?applicable_category=windows&applicable_version=4.1
Vendor Advisory
Release Notes

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*

Версия до 4.1.0.62 (исключая)

EPSS

Процентиль: 17%

0.00054

Низкий

6 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-354

Связанные уязвимости

GHSA-2gg4-v645-j922

CVSS3: 6

github

почти 2 года назад

An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on Windows during the Repair App functionality may allow Local Execution of Code.This issue affects Client Connector on Windows: before 4.1.0.62.

EPSS

Процентиль: 17%

0.00054

Низкий

6 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-354