Zscaler Client Connector 4.1 for MacOS

CPE Details

Zscaler Client Connector 4.1 for MacOS
zscaler
client_connector
4.1
2023-06-30
12h44 +00:00
2023-06-30
14h38 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:zscaler:client_connector:4.1:*:*:*:*:macos:*:*

Informations

Vendor

zscaler

Product

client_connector

Version

4.1

Target Software

macos

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-23483 2024-08-06 15h30 +00:00 An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connector on MacOS <4.2.
9.8
Critical
CVE-2024-23460 2024-08-06 15h29 +00:00 The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <4.2.
7.8
High
CVE-2024-3661 2024-05-06 18h31 +00:00 DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.
7.6
High