zscaler

4 Products 37 CVEs

CVE Severity Distribution (All Time)

Critical

High

Medium

Low

Timeline Overview

Last 30 Days 0 CVEs

Last 6 Months 0 CVEs

Last Year 6 CVEs

Products

View all

Recent CVEs

View all

CVE-2023-28806 MEDIUM 11 months ago

An Improper Validation of signature in Zscaler Client Connector on Windows allows an authenticated user to disable anti-tampering. This issue affects…

CVE-2024-23483 HIGH 11 months ago

An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command Injection. This issue affects Zscaler Client Connec…

CVE-2024-23460 MEDIUM 11 months ago

The Zscaler Updater process does not validate the digital signature of the installer before execution, allowing arbitrary code to be locally executed…

CVE-2024-23464 HIGH 11 months ago

In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Wi…

CVE-2024-23458 HIGH 11 months ago

While copying individual autoupdater log files, reparse point check was missing which could result into crafted attacks, potentially leading to a loc…

CVE-2024-23456 HIGH 11 months ago

Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tamp…

zscaler

CVE Severity Distribution (All Time)

Timeline Overview

Products

Client Connector

client_connector

ZIA Admin Portal

ZIA

Recent CVEs