Unrated severityNVD Advisory· Published Oct 23, 2023· Updated Sep 11, 2024
Traffic being bypassed by ZCC by configuring synthetic IP range as local network
CVE-2023-28803
Description
An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.
Affected products
2<3.9+ 1 more
- (no CPE)range: <3.9
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.