Unrated severityNVD Advisory· Published Oct 23, 2023· Updated Sep 11, 2024
Privilege Escalation Using PID Reuse in ZCC macOS
CVE-2021-26737
Description
The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A local adversary without sufficient privileges may be able to shutdown the Zscaler tunnel by exploiting a race condition.
Affected products
2<3.6+ 1 more
- (no CPE)range: <3.6
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.