Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    98 vulnerabilities by zscaler

    CVE-2026-22569 (GCVE-0-2026-22569)

    Vulnerability from nvd – Published: 2026-03-31 14:54 – Updated: 2026-03-31 17:24
    VLAI
    Title
    Incorrect startup configuration in ZCC
    Summary
    An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1289 - Improper validation of unsafe equivalence in input
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Zscaler Client Connector Affected: 4.7 , < 4.7.0.141 (custom)
    Affected: 4.8 , < 4.8.0.63 (custom)
    Create a notification for this product.
    Credits
    Jordan Eberst, CISA
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22569",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T17:24:02.173979Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T17:24:13.723Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Zscaler Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.7.0.141",
                  "status": "affected",
                  "version": "4.7",
                  "versionType": "custom"
                },
                {
                  "lessThan": "4.8.0.63",
                  "status": "affected",
                  "version": "4.8",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Jordan Eberst, CISA"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances."
                }
              ],
              "value": "An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1289",
                  "description": "CWE-1289 Improper validation of unsafe equivalence in input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T14:54:57.241Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2025"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect startup configuration in ZCC",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22569",
        "datePublished": "2026-03-31T14:54:57.241Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-03-31T17:24:13.723Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-22568 (GCVE-0-2026-22568)

    Vulnerability from nvd – Published: 2026-02-23 16:12 – Updated: 2026-02-23 18:47
    VLAI
    Title
    Unauthorized information retrieval in ZIA Admin UI
    Summary
    Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler ZIA Admin UI Affected: 6.2 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche Börse Group)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22568",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-23T18:46:07.564440Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-23T18:47:28.205Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ZIA Admin UI",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "6.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche B\u00f6rse Group)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions."
                }
              ],
              "value": "Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-54",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-54 Query System for Information"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-23T16:12:52.917Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/release-upgrade-summary-2026?applicable_category=zscaler.net\u0026deployment_date=2026-02-12\u0026id=1538576"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Unauthorized information retrieval in ZIA Admin UI",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22568",
        "datePublished": "2026-02-23T16:12:52.917Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-02-23T18:47:28.205Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-22567 (GCVE-0-2026-22567)

    Vulnerability from nvd – Published: 2026-02-23 16:13 – Updated: 2026-02-23 18:41
    VLAI
    Title
    ZIA Admin UI Input Validation Bug
    Summary
    Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler ZIA Admin UI Affected: 6.2 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche Börse Group)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22567",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-23T18:41:08.018240Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-23T18:41:19.949Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ZIA Admin UI",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "6.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche B\u00f6rse Group)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios."
                }
              ],
              "value": "Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-153",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-153 Input Data Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-23T16:13:32.608Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/release-upgrade-summary-2025?applicable_category=zscalertwo.net\u0026deployment_date=2025-12-17\u0026id=1538575"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "ZIA Admin UI Input Validation Bug",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22567",
        "datePublished": "2026-02-23T16:13:32.608Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-02-23T18:41:19.949Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54983 (GCVE-0-2025-54983)

    Vulnerability from nvd – Published: 2025-11-12 03:07 – Updated: 2025-11-12 18:18
    VLAI
    Title
    Health check port on ZCC allows tunnel bypass
    Summary
    A health check port on Zscaler Client Connector on Windows, versions 4.6 < 4.6.0.216 and 4.7 < 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-772 - Missing Release of Resource after Effective Lifetime
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Zscaler Client Connector Affected: 4.6 , < 4.6.0.216 (custom)
    Affected: 4.7 , < 4.7.0.47 (custom)
    Create a notification for this product.
    Credits
    DTCC Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54983",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-12T18:18:25.758917Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-12T18:18:36.813Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Zscaler Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.6.0.216",
                  "status": "affected",
                  "version": "4.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "4.7.0.47",
                  "status": "affected",
                  "version": "4.7",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "other",
              "value": "DTCC Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A health check port on Zscaler Client Connector on Windows, versions 4.6 \u0026lt;  4.6.0.216 and 4.7 \u0026lt; 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls.\n\n\u003cbr\u003e"
                }
              ],
              "value": "A health check port on Zscaler Client Connector on Windows, versions 4.6 \u003c  4.6.0.216 and 4.7 \u003c 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-772",
                  "description": "CWE-772 Missing Release of Resource after Effective Lifetime",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-12T03:07:39.531Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2025"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Health check port on ZCC allows tunnel bypass",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2025-54983",
        "datePublished": "2025-11-12T03:07:39.531Z",
        "dateReserved": "2025-08-04T14:51:53.367Z",
        "dateUpdated": "2025-11-12T18:18:36.813Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54982 (GCVE-0-2025-54982)

    Vulnerability from nvd – Published: 2025-08-05 05:36 – Updated: 2026-02-26 17:49
    VLAI
    Title
    SAML 2.0 Public Key Validation Issue
    Summary
    An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on the server-side allowed an authentication abuse.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Authentication Server Affected: 0 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Richard Warren, AmberWolf
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54982",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-19T03:55:32.996098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:49:58.538Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Authentication Server",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Richard Warren, AmberWolf"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAn improper verification of cryptographic signature in Zscaler\u0027s SAML authentication mechanism on the server-side allowed an authentication abuse.\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "An improper verification of cryptographic signature in Zscaler\u0027s SAML authentication mechanism on the server-side allowed an authentication abuse."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-114",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-114 Authentication Abuse"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 9.6,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-08-05T05:36:06.752Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/about-identity-providers"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "SAML 2.0 Public Key Validation Issue",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2025-54982",
        "datePublished": "2025-08-05T05:36:06.752Z",
        "dateReserved": "2025-08-04T14:51:53.367Z",
        "dateUpdated": "2026-02-26T17:49:58.538Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-31127 (GCVE-0-2024-31127)

    Vulnerability from nvd – Published: 2025-06-04 04:45 – Updated: 2025-06-04 13:46
    VLAI
    Title
    MacOS Zscaler Client Connector Local Privilege Escalation
    Summary
    An improper verification of a loaded library in Zscaler Client Connector on Mac < 4.2.0.241 may allow a local attacker to elevate their privileges.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-346 - Origin Validation Error
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.241 (custom)
    Create a notification for this product.
    Credits
    Max Keasley
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-31127",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:35:54.464182Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-04T13:46:50.573Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.241",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Max Keasley"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper verification of a loaded library in Zscaler Client Connector on Mac \u0026lt; 4.2.0.241 may allow a local attacker to elevate their privileges.\n\n\u003cbr\u003e"
                }
              ],
              "value": "An improper verification of a loaded library in Zscaler Client Connector on Mac \u003c 4.2.0.241 may allow a local attacker to elevate their privileges."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-159",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-159 Redirect Access to Libraries"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-346",
                  "description": "CWE-346 Origin Validation Error",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-04T04:45:07.342Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2023?applicable_category=macOS\u0026applicable_version=4.2\u0026deployment_date=2023-12-14"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "MacOS Zscaler Client Connector Local Privilege Escalation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-31127",
        "datePublished": "2025-06-04T04:45:07.342Z",
        "dateReserved": "2024-03-28T10:12:41.950Z",
        "dateUpdated": "2025-06-04T13:46:50.573Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23483 (GCVE-0-2024-23483)

    Vulnerability from nvd – Published: 2024-08-06 15:30 – Updated: 2024-08-06 18:08
    VLAI
    Title
    Local Privilege Escalation via lack of input validation
    Summary
    An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connector on MacOS <4.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    Singapore GovTech Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23483",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:42:35.559952Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:08:53.764Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Singapore GovTech Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection.\u0026nbsp;\u003cspan style=\"background-color: var(--wht);\"\u003eThis issue affects Zscaler Client Connector on MacOS \u0026lt;4.2.\u003c/span\u003e"
                }
              ],
              "value": "An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection.\u00a0This issue affects Zscaler Client Connector on MacOS \u003c4.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-88",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-88 OS Command Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:30:51.851Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=macos\u0026applicable_version=4.2"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Local Privilege Escalation via lack of input validation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23483",
        "datePublished": "2024-08-06T15:30:51.851Z",
        "dateReserved": "2024-01-17T16:32:36.625Z",
        "dateUpdated": "2024-08-06T18:08:53.764Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23464 (GCVE-0-2024-23464)

    Vulnerability from nvd – Published: 2024-08-06 15:24 – Updated: 2024-08-06 15:41
    VLAI
    Title
    Zscaler bypass with administrative privileges on Windows
    Summary
    In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows <4.2.1
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-281 - Improper Preservation of Permissions
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.1 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.1 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Randstad N.V. Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23464",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T15:38:49.752319Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:41:17.867Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Randstad N.V. Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eIn certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows \u0026lt;4.2.1\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows \u003c4.2.1"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-281",
                  "description": "CWE-281 Improper Preservation of Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:24:03.730Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=Windows\u0026applicable_version=4.2.1"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Zscaler bypass with administrative privileges on Windows",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23464",
        "datePublished": "2024-08-06T15:24:03.730Z",
        "dateReserved": "2024-01-17T15:15:47.222Z",
        "dateUpdated": "2024-08-06T15:41:17.867Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23460 (GCVE-0-2024-23460)

    Vulnerability from nvd – Published: 2024-08-06 15:29 – Updated: 2024-08-06 20:06
    VLAI
    Title
    Incorrect signature validation of package
    Summary
    The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <4.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23460",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:57:32.876295Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T20:06:58.896Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS \u0026lt;4.2.\u003cbr\u003e"
                }
              ],
              "value": "The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS \u003c4.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-558",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-558 Replace Trusted Executable"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:29:26.050Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=macos\u0026applicable_version=4.2"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect signature validation of package",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23460",
        "datePublished": "2024-08-06T15:29:26.050Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T20:06:58.896Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23458 (GCVE-0-2024-23458)

    Vulnerability from nvd – Published: 2024-08-06 15:22 – Updated: 2024-08-06 18:36
    VLAI
    Title
    Local Privilege Escalation on Zscaler Client Connector on Windows
    Summary
    While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows <4.2.0.190.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-346 - Origin Validation Error
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23458",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T18:35:13.595878Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:36:26.478Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows \u0026lt;4.2.0.190.\u003cbr\u003e"
                }
              ],
              "value": "While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows \u003c4.2.0.190."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-346",
                  "description": "CWE-346 Origin Validation Error",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:22:58.963Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Local Privilege Escalation on Zscaler Client Connector on Windows",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23458",
        "datePublished": "2024-08-06T15:22:58.963Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T18:36:26.478Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23456 (GCVE-0-2024-23456)

    Vulnerability from nvd – Published: 2024-08-06 15:21 – Updated: 2024-08-06 15:44
    VLAI
    Title
    Signature validation issue leads to Anti-Tampering bypass
    Summary
    Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tampering enabled.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23456",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T15:42:16.128378Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:44:01.045Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAnti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector \u0026lt;4.2.0.190 with anti-tampering enabled.\u003c/span\u003e"
                }
              ],
              "value": "Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector \u003c4.2.0.190 with anti-tampering enabled."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:21:51.052Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Signature validation issue leads to Anti-Tampering bypass",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23456",
        "datePublished": "2024-08-06T15:21:51.052Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T15:44:01.045Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-28806 (GCVE-0-2023-28806)

    Vulnerability from nvd – Published: 2024-08-06 15:41 – Updated: 2024-08-06 17:30
    VLAI
    Title
    Signature validation error in DLL allows disabling anti-tampering protection
    Summary
    An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows <4.2.0.190.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-28806",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:14:09.944551Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T17:30:31.651Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows \u0026lt;4.2.0.190.\u003cbr\u003e"
                }
              ],
              "value": "An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows \u003c4.2.0.190."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-207",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-207 Removing Important Client Functionality"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:41:01.883Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Signature validation error in DLL allows disabling anti-tampering protection",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2023-28806",
        "datePublished": "2024-08-06T15:41:01.883Z",
        "dateReserved": "2023-03-23T18:29:15.803Z",
        "dateUpdated": "2024-08-06T17:30:31.651Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-3661 (GCVE-0-2024-3661)

    Vulnerability from nvd – Published: 2024-05-06 18:31 – Updated: 2024-08-28 19:09
    VLAI
    Title
    DHCP routing options can manipulate interface-based VPN traffic
    Summary
    DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    • CWE-501 - Trust Boundary Violation
    Assigner
    Impacted products
    Vendor Product Version
    IETF DHCP Affected: 0
    Create a notification for this product.
    Date Public
    2002-12-31 01:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:20:00.420Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://datatracker.ietf.org/doc/html/rfc2131#section-7"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://datatracker.ietf.org/doc/html/rfc3442#section-7"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://tunnelvisionbug.com/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.leviathansecurity.com/research/tunnelvision"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://news.ycombinator.com/item?id=40279632"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://issuetracker.google.com/issues/263721377"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://mullvad.net/en/blog/evaluating-the-impact-of-tunnelvision"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.zscaler.com/blogs/security-research/cve-2024-3661-k-tunnelvision-exposes-vpn-bypass-vulnerability"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lowendtalk.com/discussion/188857/a-rogue-dhcp-server-within-your-network-can-and-will-hijack-your-vpn-traffic"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://news.ycombinator.com/item?id=40284111"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.agwa.name/blog/post/hardening_openvpn_for_def_con"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.theregister.com/2024/05/07/vpn_tunnelvision_dhcp/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.citrix.com/article/CTX677069/cloud-software-group-security-advisory-for-cve20243661"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00009"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://bst.cisco.com/quickview/bug/CSCwk05814"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.paloaltonetworks.com/CVE-2024-3661"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-170"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://my.f5.com/manage/s/article/K000139553"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-3661",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-08T04:00:07.962328Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T19:09:06.995Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "product": "DHCP",
              "vendor": "IETF",
              "versions": [
                {
                  "status": "affected",
                  "version": "0"
                }
              ]
            }
          ],
          "datePublic": "2002-12-31T01:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "DHCP can add routes to a client\u2019s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN."
                }
              ],
              "value": "DHCP can add routes to a client\u2019s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 7.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-501",
                  "description": "CWE-501 Trust Boundary Violation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-01T15:04:50.790Z",
            "orgId": "9119a7d8-5eab-497f-8521-727c672e3725",
            "shortName": "cisa-cg"
          },
          "references": [
            {
              "url": "https://datatracker.ietf.org/doc/html/rfc2131#section-7"
            },
            {
              "url": "https://datatracker.ietf.org/doc/html/rfc3442#section-7"
            },
            {
              "url": "https://tunnelvisionbug.com/"
            },
            {
              "url": "https://www.leviathansecurity.com/research/tunnelvision"
            },
            {
              "url": "https://news.ycombinator.com/item?id=40279632"
            },
            {
              "url": "https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/"
            },
            {
              "url": "https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/"
            },
            {
              "url": "https://issuetracker.google.com/issues/263721377"
            },
            {
              "url": "https://mullvad.net/en/blog/evaluating-the-impact-of-tunnelvision"
            },
            {
              "url": "https://www.zscaler.com/blogs/security-research/cve-2024-3661-k-tunnelvision-exposes-vpn-bypass-vulnerability"
            },
            {
              "url": "https://lowendtalk.com/discussion/188857/a-rogue-dhcp-server-within-your-network-can-and-will-hijack-your-vpn-traffic"
            },
            {
              "url": "https://news.ycombinator.com/item?id=40284111"
            },
            {
              "url": "https://www.agwa.name/blog/post/hardening_openvpn_for_def_con"
            },
            {
              "url": "https://www.theregister.com/2024/05/07/vpn_tunnelvision_dhcp/"
            },
            {
              "url": "https://support.citrix.com/article/CTX677069/cloud-software-group-security-advisory-for-cve20243661"
            },
            {
              "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00009"
            },
            {
              "url": "https://bst.cisco.com/quickview/bug/CSCwk05814"
            },
            {
              "url": "https://security.paloaltonetworks.com/CVE-2024-3661"
            },
            {
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-170"
            },
            {
              "url": "https://my.f5.com/manage/s/article/K000139553"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "DHCP routing options can manipulate interface-based VPN traffic",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9119a7d8-5eab-497f-8521-727c672e3725",
        "assignerShortName": "cisa-cg",
        "cveId": "CVE-2024-3661",
        "datePublished": "2024-05-06T18:31:21.217Z",
        "dateReserved": "2024-04-11T17:24:22.637Z",
        "dateUpdated": "2024-08-28T19:09:06.995Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23462 (GCVE-0-2024-23462)

    Vulnerability from nvd – Published: 2024-05-02 13:11 – Updated: 2024-08-01 23:06
    VLAI
    Title
    ZCC Mac validinstaller file integrity check missing
    Summary
    An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS allows a denial of service of the Client Connector binary and thus removing client functionality.This issue affects Client Connector on MacOS: before 3.4.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-354 - Improper Validation of Integrity Check Value
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 3.4 (custom)
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23462",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-17T15:08:26.220457Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-17T15:08:35.249Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:06:24.159Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021?applicable_category=macos\u0026applicable_version=3.4"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "3.4",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS allows a denial of service of the Client Connector binary and thus removing client functionality.\u003cp\u003eThis issue affects Client Connector on MacOS: before 3.4.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS allows a denial of service of the Client Connector binary and thus removing client functionality.This issue affects Client Connector on MacOS: before 3.4.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-207",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-207 Removing Important Client Functionality"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 3.3,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-354",
                  "description": "CWE-354 Improper Validation of Integrity Check Value",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-02T13:11:38.955Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021?applicable_category=macos\u0026applicable_version=3.4"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "ZCC Mac validinstaller file integrity check missing",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23462",
        "datePublished": "2024-05-02T13:11:38.955Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-01T23:06:24.159Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23461 (GCVE-0-2024-23461)

    Vulnerability from nvd – Published: 2024-05-02 13:11 – Updated: 2024-08-01 23:06
    VLAI
    Title
    ZCC macOS Upgrade ZIP Bomb DoS
    Summary
    An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS during the upgrade process may allow a Local Execution of Code.This issue affects Client Connector on MacOS: before 3.4.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-354 - Improper Validation of Integrity Check Value
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 3.4 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: - , < 3.4 (custom)
        cpe:2.3:a:zscaler:client_connector:-:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:-:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "3.4",
                    "status": "affected",
                    "version": "-",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23461",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-02T14:50:52.485749Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:45:51.383Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:06:24.232Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021?applicable_category=macos\u0026applicable_version=3.4"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "3.4",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS during the upgrade process may allow a Local Execution of Code.\u003cp\u003eThis issue affects Client Connector on MacOS: before 3.4.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS during the upgrade process may allow a Local Execution of Code.This issue affects Client Connector on MacOS: before 3.4.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-549",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-549 Local Execution of Code"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 4.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-354",
                  "description": "CWE-354 Improper Validation of Integrity Check Value",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-02T13:11:29.433Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021?applicable_category=macos\u0026applicable_version=3.4"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "ZCC macOS Upgrade ZIP Bomb DoS",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23461",
        "datePublished": "2024-05-02T13:11:29.433Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-01T23:06:24.232Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23459 (GCVE-0-2024-23459)

    Vulnerability from nvd – Published: 2024-05-02 13:11 – Updated: 2024-08-01 23:06
    VLAI
    Title
    Multiple Arbitrary Creates/Overwrites by link following
    Summary
    An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client Connector on Mac allows a system file to be overwritten.This issue affects Zscaler Client Connector on Mac : before 3.7.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 3.7 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 3.7 (custom)
        cpe:2.3:a:zscaler:client_connector:-:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:-:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "3.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23459",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-02T15:36:32.891212Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-06T14:06:49.511Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:06:24.598Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2022?applicable_category=macos\u0026applicable_version=3.7"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "3.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Link Resolution Before File Access (\u0027Link Following\u0027) vulnerability in Zscaler Client Connector on Mac allows a system file to be overwritten.\u003cp\u003eThis issue affects Zscaler Client Connector on Mac : before 3.7.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Link Resolution Before File Access (\u0027Link Following\u0027) vulnerability in Zscaler Client Connector on Mac allows a system file to be overwritten.This issue affects Zscaler Client Connector on Mac : before 3.7.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-73",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-73 User-Controlled Filename"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-02T13:11:19.436Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2022?applicable_category=macos\u0026applicable_version=3.7"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Multiple Arbitrary Creates/Overwrites by link following",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23459",
        "datePublished": "2024-05-02T13:11:19.436Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-01T23:06:24.598Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-41971 (GCVE-0-2023-41971)

    Vulnerability from nvd – Published: 2024-05-02 13:11 – Updated: 2024-08-06 17:51
    VLAI
    Title
    Windows ZCC Upgrade DoS And Privilege Escalation Through RPC Control
    Summary
    An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client Connector on Windows allows a system file to be overwritten.This issue affects Client Connector on Windows: before 3.7.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 3.7 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 3.7 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T19:09:49.420Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021??applicable_category=windows\u0026applicable_version=3.7"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "3.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-41971",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-02T17:15:44.552151Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T17:51:01.988Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "3.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Link Resolution Before File Access (\u0027Link Following\u0027) vulnerability in Zscaler Client Connector on Windows allows a system file to be overwritten.\u003cp\u003eThis issue affects Client Connector on Windows: before 3.7.\u003c/p\u003e"
                }
              ],
              "value": "An Improper Link Resolution Before File Access (\u0027Link Following\u0027) vulnerability in Zscaler Client Connector on Windows allows a system file to be overwritten.This issue affects Client Connector on Windows: before 3.7.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-73",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-73 User-Controlled Filename"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-02T13:11:07.860Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021??applicable_category=windows\u0026applicable_version=3.7"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Windows ZCC Upgrade DoS And Privilege Escalation Through RPC Control",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2023-41971",
        "datePublished": "2024-05-02T13:11:07.860Z",
        "dateReserved": "2023-09-06T17:14:12.958Z",
        "dateUpdated": "2024-08-06T17:51:01.988Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-22569 (GCVE-0-2026-22569)

    Vulnerability from cvelistv5 – Published: 2026-03-31 14:54 – Updated: 2026-03-31 17:24
    VLAI
    Title
    Incorrect startup configuration in ZCC
    Summary
    An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1289 - Improper validation of unsafe equivalence in input
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Zscaler Client Connector Affected: 4.7 , < 4.7.0.141 (custom)
    Affected: 4.8 , < 4.8.0.63 (custom)
    Create a notification for this product.
    Credits
    Jordan Eberst, CISA
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22569",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T17:24:02.173979Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T17:24:13.723Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Zscaler Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.7.0.141",
                  "status": "affected",
                  "version": "4.7",
                  "versionType": "custom"
                },
                {
                  "lessThan": "4.8.0.63",
                  "status": "affected",
                  "version": "4.8",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Jordan Eberst, CISA"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances."
                }
              ],
              "value": "An incorrect startup configuration of affected versions of Zscaler Client Connector on Windows may cause a limited amount of traffic from being inspected under rare circumstances."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1289",
                  "description": "CWE-1289 Improper validation of unsafe equivalence in input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T14:54:57.241Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2025"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect startup configuration in ZCC",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22569",
        "datePublished": "2026-03-31T14:54:57.241Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-03-31T17:24:13.723Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-22567 (GCVE-0-2026-22567)

    Vulnerability from cvelistv5 – Published: 2026-02-23 16:13 – Updated: 2026-02-23 18:41
    VLAI
    Title
    ZIA Admin UI Input Validation Bug
    Summary
    Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler ZIA Admin UI Affected: 6.2 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche Börse Group)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22567",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-23T18:41:08.018240Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-23T18:41:19.949Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ZIA Admin UI",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "6.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche B\u00f6rse Group)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios."
                }
              ],
              "value": "Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-153",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-153 Input Data Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-23T16:13:32.608Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/release-upgrade-summary-2025?applicable_category=zscalertwo.net\u0026deployment_date=2025-12-17\u0026id=1538575"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "ZIA Admin UI Input Validation Bug",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22567",
        "datePublished": "2026-02-23T16:13:32.608Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-02-23T18:41:19.949Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-22568 (GCVE-0-2026-22568)

    Vulnerability from cvelistv5 – Published: 2026-02-23 16:12 – Updated: 2026-02-23 18:47
    VLAI
    Title
    Unauthorized information retrieval in ZIA Admin UI
    Summary
    Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler ZIA Admin UI Affected: 6.2 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche Börse Group)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-22568",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-02-23T18:46:07.564440Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-23T18:47:28.205Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "ZIA Admin UI",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "6.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Andrew Allen Hess on behalf of Cyber Defense Team (Deutsche B\u00f6rse Group)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions."
                }
              ],
              "value": "Improper neutralization of special elements in user-supplied input within the ZIA Admin UI could allow an authenticated administrator to access or retrieve unauthorized internal information in rare conditions."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-54",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-54 Query System for Information"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-02-23T16:12:52.917Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/release-upgrade-summary-2026?applicable_category=zscaler.net\u0026deployment_date=2026-02-12\u0026id=1538576"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Unauthorized information retrieval in ZIA Admin UI",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2026-22568",
        "datePublished": "2026-02-23T16:12:52.917Z",
        "dateReserved": "2026-01-07T15:52:48.033Z",
        "dateUpdated": "2026-02-23T18:47:28.205Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54983 (GCVE-0-2025-54983)

    Vulnerability from cvelistv5 – Published: 2025-11-12 03:07 – Updated: 2025-11-12 18:18
    VLAI
    Title
    Health check port on ZCC allows tunnel bypass
    Summary
    A health check port on Zscaler Client Connector on Windows, versions 4.6 < 4.6.0.216 and 4.7 < 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-772 - Missing Release of Resource after Effective Lifetime
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Zscaler Client Connector Affected: 4.6 , < 4.6.0.216 (custom)
    Affected: 4.7 , < 4.7.0.47 (custom)
    Create a notification for this product.
    Credits
    DTCC Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54983",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-12T18:18:25.758917Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-12T18:18:36.813Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Zscaler Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.6.0.216",
                  "status": "affected",
                  "version": "4.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "4.7.0.47",
                  "status": "affected",
                  "version": "4.7",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "other",
              "value": "DTCC Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A health check port on Zscaler Client Connector on Windows, versions 4.6 \u0026lt;  4.6.0.216 and 4.7 \u0026lt; 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls.\n\n\u003cbr\u003e"
                }
              ],
              "value": "A health check port on Zscaler Client Connector on Windows, versions 4.6 \u003c  4.6.0.216 and 4.7 \u003c 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.2,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-772",
                  "description": "CWE-772 Missing Release of Resource after Effective Lifetime",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-12T03:07:39.531Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2025"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Health check port on ZCC allows tunnel bypass",
          "x_generator": {
            "engine": "Vulnogram 0.5.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2025-54983",
        "datePublished": "2025-11-12T03:07:39.531Z",
        "dateReserved": "2025-08-04T14:51:53.367Z",
        "dateUpdated": "2025-11-12T18:18:36.813Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-54982 (GCVE-0-2025-54982)

    Vulnerability from cvelistv5 – Published: 2025-08-05 05:36 – Updated: 2026-02-26 17:49
    VLAI
    Title
    SAML 2.0 Public Key Validation Issue
    Summary
    An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on the server-side allowed an authentication abuse.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Authentication Server Affected: 0 , < 6.2r (custom)
    Create a notification for this product.
    Credits
    Richard Warren, AmberWolf
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-54982",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-19T03:55:32.996098Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:49:58.538Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Authentication Server",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "6.2r",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Richard Warren, AmberWolf"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAn improper verification of cryptographic signature in Zscaler\u0027s SAML authentication mechanism on the server-side allowed an authentication abuse.\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "An improper verification of cryptographic signature in Zscaler\u0027s SAML authentication mechanism on the server-side allowed an authentication abuse."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-114",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-114 Authentication Abuse"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 9.6,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-08-05T05:36:06.752Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zia/about-identity-providers"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "SAML 2.0 Public Key Validation Issue",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2025-54982",
        "datePublished": "2025-08-05T05:36:06.752Z",
        "dateReserved": "2025-08-04T14:51:53.367Z",
        "dateUpdated": "2026-02-26T17:49:58.538Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-31127 (GCVE-0-2024-31127)

    Vulnerability from cvelistv5 – Published: 2025-06-04 04:45 – Updated: 2025-06-04 13:46
    VLAI
    Title
    MacOS Zscaler Client Connector Local Privilege Escalation
    Summary
    An improper verification of a loaded library in Zscaler Client Connector on Mac < 4.2.0.241 may allow a local attacker to elevate their privileges.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-346 - Origin Validation Error
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.241 (custom)
    Create a notification for this product.
    Credits
    Max Keasley
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-31127",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:35:54.464182Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-04T13:46:50.573Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.241",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Max Keasley"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper verification of a loaded library in Zscaler Client Connector on Mac \u0026lt; 4.2.0.241 may allow a local attacker to elevate their privileges.\n\n\u003cbr\u003e"
                }
              ],
              "value": "An improper verification of a loaded library in Zscaler Client Connector on Mac \u003c 4.2.0.241 may allow a local attacker to elevate their privileges."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-159",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-159 Redirect Access to Libraries"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-346",
                  "description": "CWE-346 Origin Validation Error",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-04T04:45:07.342Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2023?applicable_category=macOS\u0026applicable_version=4.2\u0026deployment_date=2023-12-14"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "MacOS Zscaler Client Connector Local Privilege Escalation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-31127",
        "datePublished": "2025-06-04T04:45:07.342Z",
        "dateReserved": "2024-03-28T10:12:41.950Z",
        "dateUpdated": "2025-06-04T13:46:50.573Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-28806 (GCVE-0-2023-28806)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:41 – Updated: 2024-08-06 17:30
    VLAI
    Title
    Signature validation error in DLL allows disabling anti-tampering protection
    Summary
    An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows <4.2.0.190.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-28806",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:14:09.944551Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T17:30:31.651Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows \u0026lt;4.2.0.190.\u003cbr\u003e"
                }
              ],
              "value": "An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects Client Connector on Windows \u003c4.2.0.190."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-207",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-207 Removing Important Client Functionality"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:41:01.883Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Signature validation error in DLL allows disabling anti-tampering protection",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2023-28806",
        "datePublished": "2024-08-06T15:41:01.883Z",
        "dateReserved": "2023-03-23T18:29:15.803Z",
        "dateUpdated": "2024-08-06T17:30:31.651Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23483 (GCVE-0-2024-23483)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:30 – Updated: 2024-08-06 18:08
    VLAI
    Title
    Local Privilege Escalation via lack of input validation
    Summary
    An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connector on MacOS <4.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    Singapore GovTech Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23483",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:42:35.559952Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:08:53.764Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Singapore GovTech Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection.\u0026nbsp;\u003cspan style=\"background-color: var(--wht);\"\u003eThis issue affects Zscaler Client Connector on MacOS \u0026lt;4.2.\u003c/span\u003e"
                }
              ],
              "value": "An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection.\u00a0This issue affects Zscaler Client Connector on MacOS \u003c4.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-88",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-88 OS Command Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:30:51.851Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=macos\u0026applicable_version=4.2"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Local Privilege Escalation via lack of input validation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23483",
        "datePublished": "2024-08-06T15:30:51.851Z",
        "dateReserved": "2024-01-17T16:32:36.625Z",
        "dateUpdated": "2024-08-06T18:08:53.764Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23460 (GCVE-0-2024-23460)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:29 – Updated: 2024-08-06 20:06
    VLAI
    Title
    Incorrect signature validation of package
    Summary
    The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS <4.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*
    Create a notification for this product.
    Credits
    LMCO Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:macos:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23460",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T17:57:32.876295Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T20:06:58.896Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "MacOS"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "LMCO Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS \u0026lt;4.2.\u003cbr\u003e"
                }
              ],
              "value": "The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed. This affects Zscaler Client Connector on MacOS \u003c4.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-558",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-558 Replace Trusted Executable"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:29:26.050Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=macos\u0026applicable_version=4.2"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect signature validation of package",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23460",
        "datePublished": "2024-08-06T15:29:26.050Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T20:06:58.896Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23464 (GCVE-0-2024-23464)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:24 – Updated: 2024-08-06 15:41
    VLAI
    Title
    Zscaler bypass with administrative privileges on Windows
    Summary
    In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows <4.2.1
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-281 - Improper Preservation of Permissions
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.1 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.1 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Randstad N.V. Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.1",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23464",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T15:38:49.752319Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:41:17.867Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Randstad N.V. Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eIn certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows \u0026lt;4.2.1\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows \u003c4.2.1"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-281",
                  "description": "CWE-281 Improper Preservation of Permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:24:03.730Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=Windows\u0026applicable_version=4.2.1"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Zscaler bypass with administrative privileges on Windows",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23464",
        "datePublished": "2024-08-06T15:24:03.730Z",
        "dateReserved": "2024-01-17T15:15:47.222Z",
        "dateUpdated": "2024-08-06T15:41:17.867Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23458 (GCVE-0-2024-23458)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:22 – Updated: 2024-08-06 18:36
    VLAI
    Title
    Local Privilege Escalation on Zscaler Client Connector on Windows
    Summary
    While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows <4.2.0.190.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-346 - Origin Validation Error
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23458",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T18:35:13.595878Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T18:36:26.478Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows \u0026lt;4.2.0.190.\u003cbr\u003e"
                }
              ],
              "value": "While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a local privilege escalation. This issue affects Zscaler Client Connector on Windows \u003c4.2.0.190."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-346",
                  "description": "CWE-346 Origin Validation Error",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:22:58.963Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Local Privilege Escalation on Zscaler Client Connector on Windows",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23458",
        "datePublished": "2024-08-06T15:22:58.963Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T18:36:26.478Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23456 (GCVE-0-2024-23456)

    Vulnerability from cvelistv5 – Published: 2024-08-06 15:21 – Updated: 2024-08-06 15:44
    VLAI
    Title
    Signature validation issue leads to Anti-Tampering bypass
    Summary
    Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tampering enabled.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-347 - Improper Verification of Cryptographic Signature
    Assigner
    Impacted products
    Vendor Product Version
    Zscaler Client Connector Affected: 0 , < 4.2.0.190 (custom)
    Create a notification for this product.
    zscaler client_connector Affected: 0 , < 4.2.0.190 (custom)
        cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    Equinor Red Team
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "client_connector",
                "vendor": "zscaler",
                "versions": [
                  {
                    "lessThan": "4.2.0.190",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23456",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-06T15:42:16.128378Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-06T15:44:01.045Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Client Connector",
              "vendor": "Zscaler",
              "versions": [
                {
                  "lessThan": "4.2.0.190",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Equinor Red Team"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAnti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector \u0026lt;4.2.0.190 with anti-tampering enabled.\u003c/span\u003e"
                }
              ],
              "value": "Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector \u003c4.2.0.190 with anti-tampering enabled."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-554",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-554 Functionality Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-347",
                  "description": "CWE-347 Improper Verification of Cryptographic Signature",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-06T15:21:51.052Z",
            "orgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
            "shortName": "Zscaler"
          },
          "references": [
            {
              "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows\u0026applicable_version=4.2.0.190"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Signature validation issue leads to Anti-Tampering bypass",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "73c6f63b-efac-410d-a0a9-569700f85a04",
        "assignerShortName": "Zscaler",
        "cveId": "CVE-2024-23456",
        "datePublished": "2024-08-06T15:21:51.052Z",
        "dateReserved": "2024-01-17T15:15:47.221Z",
        "dateUpdated": "2024-08-06T15:44:01.045Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-3661 (GCVE-0-2024-3661)

    Vulnerability from cvelistv5 – Published: 2024-05-06 18:31 – Updated: 2024-08-28 19:09
    VLAI
    Title
    DHCP routing options can manipulate interface-based VPN traffic
    Summary
    DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    • CWE-501 - Trust Boundary Violation
    Assigner
    Impacted products
    Vendor Product Version
    IETF DHCP Affected: 0
    Create a notification for this product.
    Date Public
    2002-12-31 01:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:20:00.420Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://datatracker.ietf.org/doc/html/rfc2131#section-7"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://datatracker.ietf.org/doc/html/rfc3442#section-7"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://tunnelvisionbug.com/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.leviathansecurity.com/research/tunnelvision"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://news.ycombinator.com/item?id=40279632"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://issuetracker.google.com/issues/263721377"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://mullvad.net/en/blog/evaluating-the-impact-of-tunnelvision"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.zscaler.com/blogs/security-research/cve-2024-3661-k-tunnelvision-exposes-vpn-bypass-vulnerability"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://lowendtalk.com/discussion/188857/a-rogue-dhcp-server-within-your-network-can-and-will-hijack-your-vpn-traffic"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://news.ycombinator.com/item?id=40284111"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.agwa.name/blog/post/hardening_openvpn_for_def_con"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.theregister.com/2024/05/07/vpn_tunnelvision_dhcp/"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.citrix.com/article/CTX677069/cloud-software-group-security-advisory-for-cve20243661"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00009"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://bst.cisco.com/quickview/bug/CSCwk05814"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://security.paloaltonetworks.com/CVE-2024-3661"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-170"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://my.f5.com/manage/s/article/K000139553"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-3661",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-08T04:00:07.962328Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T19:09:06.995Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "product": "DHCP",
              "vendor": "IETF",
              "versions": [
                {
                  "status": "affected",
                  "version": "0"
                }
              ]
            }
          ],
          "datePublic": "2002-12-31T01:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "DHCP can add routes to a client\u2019s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN."
                }
              ],
              "value": "DHCP can add routes to a client\u2019s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 7.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-501",
                  "description": "CWE-501 Trust Boundary Violation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-01T15:04:50.790Z",
            "orgId": "9119a7d8-5eab-497f-8521-727c672e3725",
            "shortName": "cisa-cg"
          },
          "references": [
            {
              "url": "https://datatracker.ietf.org/doc/html/rfc2131#section-7"
            },
            {
              "url": "https://datatracker.ietf.org/doc/html/rfc3442#section-7"
            },
            {
              "url": "https://tunnelvisionbug.com/"
            },
            {
              "url": "https://www.leviathansecurity.com/research/tunnelvision"
            },
            {
              "url": "https://news.ycombinator.com/item?id=40279632"
            },
            {
              "url": "https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/"
            },
            {
              "url": "https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/"
            },
            {
              "url": "https://issuetracker.google.com/issues/263721377"
            },
            {
              "url": "https://mullvad.net/en/blog/evaluating-the-impact-of-tunnelvision"
            },
            {
              "url": "https://www.zscaler.com/blogs/security-research/cve-2024-3661-k-tunnelvision-exposes-vpn-bypass-vulnerability"
            },
            {
              "url": "https://lowendtalk.com/discussion/188857/a-rogue-dhcp-server-within-your-network-can-and-will-hijack-your-vpn-traffic"
            },
            {
              "url": "https://news.ycombinator.com/item?id=40284111"
            },
            {
              "url": "https://www.agwa.name/blog/post/hardening_openvpn_for_def_con"
            },
            {
              "url": "https://www.theregister.com/2024/05/07/vpn_tunnelvision_dhcp/"
            },
            {
              "url": "https://support.citrix.com/article/CTX677069/cloud-software-group-security-advisory-for-cve20243661"
            },
            {
              "url": "https://www.watchguard.com/wgrd-psirt/advisory/wgsa-2024-00009"
            },
            {
              "url": "https://bst.cisco.com/quickview/bug/CSCwk05814"
            },
            {
              "url": "https://security.paloaltonetworks.com/CVE-2024-3661"
            },
            {
              "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-170"
            },
            {
              "url": "https://my.f5.com/manage/s/article/K000139553"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "DHCP routing options can manipulate interface-based VPN traffic",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "9119a7d8-5eab-497f-8521-727c672e3725",
        "assignerShortName": "cisa-cg",
        "cveId": "CVE-2024-3661",
        "datePublished": "2024-05-06T18:31:21.217Z",
        "dateReserved": "2024-04-11T17:24:22.637Z",
        "dateUpdated": "2024-08-28T19:09:06.995Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }