Filtered by vendor Zscaler
Subscribe
Total
23 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-11632 | 1 Zscaler | 1 Client Connector | 2023-12-10 | 7.2 HIGH | 7.8 HIGH |
The Zscaler Client Connector prior to 2.1.2.150 did not quote the search path for services, which allows a local adversary to execute code with system privileges. | |||||
CVE-2020-11634 | 1 Zscaler | 1 Client Connector | 2023-12-10 | 6.9 MEDIUM | 7.8 HIGH |
The Zscaler Client Connector for Windows prior to 2.1.2.105 had a DLL hijacking vulnerability caused due to the configuration of OpenSSL. A local adversary may be able to execute arbitrary code in the SYSTEM context. | |||||
CVE-2020-11635 | 1 Zscaler | 1 Client Connector | 2023-12-10 | 7.2 HIGH | 7.8 HIGH |
The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges. |