CVE-2023-41972 | Zscaler Client Connector prior 4.3.0.121 on Windows Password Type privileges management

Posted by Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability has been found in Zscaler Client Connector on Windows and classified as critical. This vulnerability affects unknown code of the component Password Type Handler. The manipulation leads to improper privilege management.

This vulnerability was named CVE-2023-41972. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-41972 | Zscaler Client Connector prior 4.3.0.121 on Windows Password Type privileges management

Related Posts

CVE-2024-9797 | code-projects Blood Bank System 1.0 register.php user sql injection

CVE-2024-26489 | Social Block Links Module 2.33 Profile Name cross site scripting

CVE-2023-7259 | zzdevelop lenosp up to 20230831 Adduser Page username cross site scripting (I7XC2Y)

CVE-2024-7569 | Ivanti Neurons for ITSM up to 2023.2/2023.3/2023.4 OIDC Client Secret unknown vulnerability