2 matches found
CVE-2023-41717
Inappropriate file type control in Zscaler Proxy versions 3.6.1.25 and prior allows local attackers to bypass file download/upload restrictions...
CVE-2023-41717
CVE-2023-41717 affects Zscaler Proxy (versions 3.6.1.25 and prior). The vulnerability stems from improper file-type handling that lets local attackers bypass download/upload restrictions. PoC evidence describes bypass via byte-range/partial content reconstruction (Range header) and Microsoft BITS...