CVE-2020-11635

Summary

The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges.

Affected Software

VendorProductVersion RangeStatus
n/aZscaler Client Connector for Windows< 3.1.0affected

Weaknesses

  • Improper Privilege Management

ADP Enrichment

CVE Program Container

Additional References

References