PT-2024-19884 · Zscaler · Zscaler Client Connector
Published
2024-05-02
·
Updated
2026-02-17
·
CVE-2024-23461
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Zscaler Client Connector on MacOS versions prior to 3.4
Description
An issue with improper validation of integrity check values in the upgrade process may allow local execution of code. This issue is related to the Zscaler Client Connector on MacOS.
Recommendations
For versions prior to 3.4, update to version 3.4 or later to resolve the issue. As a temporary workaround, consider restricting the upgrade process until a patch is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zscaler Client Connector