VYPR
Unrated severityNVD Advisory· Published Oct 23, 2023· Updated Sep 11, 2024

Traffic being bypassed by ZCC by configuring synthetic IP range as local network

CVE-2023-28803

Description

An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows, allowing a functionality bypass. This issue affects Client Connector: before 3.9.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.