VYPR
Unrated severityNVD Advisory· Published Oct 23, 2023· Updated Sep 17, 2024

Junction Delete leading to elevation of privilege

CVE-2021-26734

Description

Zscaler Client Connector Installer on Windows before version 3.4.0.124 improperly handled directory junctions during uninstallation. A local adversary may be able to delete folders in an elevated context.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.