PT-2025-46563 · Zscaler · Zscaler Client Connector
Dtcc Team
·
Published
2025-11-12
·
Updated
2025-11-12
·
CVE-2025-54983
CVSS v3.1
5.2
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Zscaler Client Connector versions prior to 4.6.0.216
Zscaler Client Connector versions prior to 4.7.0.47
Description
A health check port on Zscaler Client Connector on Windows, under specific circumstances, was not released after use, potentially allowing traffic to bypass ZCC forwarding controls.
Recommendations
Update Zscaler Client Connector to version 4.6.0.216 or later.
Update Zscaler Client Connector to version 4.7.0.47 or later.
Fix
Missing Release of Resource after Effective Lifetime
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zscaler Client Connector