13 matches found
EUVD-2024-20962
Malicious code in bioql PyPI...
EUVD-2023-32442
Malicious code in bioql PyPI...
CVE-2024-23464
In certain cases, Zscaler Internet Access ZIA can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows 4.2.1...
CVE-2024-23464
In certain cases, Zscaler Internet Access ZIA can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows 4.2.1...
The vulnerability of the Zscaler Internet Access (ZIA) domain detection module allows a hacker to execute a “man-in-the-middle” attack.
The vulnerability of the Zscaler Internet Access ZIA domain detection module is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to execute a “man-in-the-middle” attack...
CVE-2023-28807
In Zscaler Internet Access ZIA a mismatch between Connect Host and Client Hello's Server Name Indication SNI enables attackers to evade network security controls by hiding their communications within legitimate traffic...
Code injection
In Zscaler Internet Access ZIA a mismatch between Connect Host and Client Hello's Server Name Indication SNI enables attackers to evade network security controls by hiding their communications within legitimate traffic...
CVE-2023-28807 Bypass of ZIA domain fronting detection module through evasion technique
In Zscaler Internet Access ZIA a mismatch between Connect Host and Client Hello's Server Name Indication SNI enables attackers to evade network security controls by hiding their communications within legitimate traffic...
CVE-2023-28807 Bypass of ZIA domain fronting detection module through evasion technique
In Zscaler Internet Access ZIA a mismatch between Connect Host and Client Hello's Server Name Indication SNI enables attackers to evade network security controls by hiding their communications within legitimate traffic...
Zscaler Internet Access 安全漏洞
Zscaler Internet Access is a cloud-native Security Service Edge SSE solution from Zscaler. Zscaler Internet Access suffers from a security vulnerability that stems from a mismatch between server name indications, which allows an attacker to hide their communications from legitimate traffic to eva...
CVE-2023-28802
An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service restart from Zscaler Diagnostics. This issue affects Client Connector: before 4.2.0.149...
Zscaler Client Connector Security Vulnerability
Zscaler Client Connector is an application from zscaler. An application installed on a device that ensures that Internet traffic and access to an organization's internal applications are secure and in compliance with the organization's policies, even when not on the corporate network. A security...
PT-2023-21978
Name of the Vulnerable Software and Affected Versions Zscaler Client Connector versions prior to 4.2.0.149 Description An issue with improper validation of integrity check values in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service...