CVE-2023-41973

Name of the Vulnerable Software and Affected Versions Zscaler Client Connector versions prior to 4.3.0.121

Description The issue arises from ZSATray passing the previousInstallerName as a config parameter to TrayManager. TrayManager then constructs the path and appends previousInstallerName to get the full path of the exe. This can lead to a local privilege escalation.

Recommendations For versions prior to 4.3.0.121, update to Win ZApp 4.3.0.121 or later to resolve the issue. As a temporary workaround, consider restricting access to the TrayManager to minimize the risk of exploitation.