Anti-tampering can be disabled under certain conditions without signature validation. This affects Zscaler Client Connector <4.2.0.190 with anti-tampering enabled.
References
Configurations
History
07 Aug 2024, 21:30
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Zscaler client Connector
Zscaler |
|
CPE | cpe:2.3:a:zscaler:client_connector:*:*:*:*:*:windows:*:* | |
References | () https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=windows&applicable_version=4.2.0.190 - Vendor Advisory | |
Summary |
|
06 Aug 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-06 16:15
Updated : 2024-08-07 21:30
NVD link : CVE-2024-23456
Mitre link : CVE-2024-23456
CVE.ORG link : CVE-2024-23456
JSON object : View
Products Affected
zscaler
- client_connector
CWE
CWE-347
Improper Verification of Cryptographic Signature