CVE-2023-28797

Publication date

2023-10-23 13:30:38

Family

Zscaler

State

PUBLISHED

Description

Zscaler Client Connector for Windows before 4.1 writes/deletes a configuration file inside specific folders on the disk. A malicious user can replace the folder and execute code as a privileged user.