VYPR
Unrated severityNVD Advisory· Published Oct 23, 2023· Updated Sep 11, 2024

Privilege Escalation Using PID Reuse in ZCC macOS

CVE-2021-26737

Description

The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A local adversary without sufficient privileges may be able to shutdown the Zscaler tunnel by exploiting a race condition.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.