Zscaler Client Connector 4.1 for MacOS

CPE Details

Zscaler Client Connector 4.1 for MacOS
zscaler
client_connector
4.1
2023-06-30
12h44 +00:00
2023-06-30
14h38 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:zscaler:client_connector:4.1:*:*:*:*:macos:*:*

Informations

Vendor

zscaler

Product

client_connector

Version

4.1

Target Software

macos

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-23483 2024-08-06 15h30 +00:00 An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connector on MacOS <4.2.
9.8
Critique
CVE-2024-23460 2024-08-06 15h29 +00:00 The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <4.2.
7.8
Haute
CVE-2024-3661 2024-05-06 18h31 +00:00 DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.
7.6
Haute