The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges.
References
Link | Resource |
---|---|
https://trust.zscaler.com/posts/7316 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Zscaler
Published: 2021-02-16T19:37:39
Updated: 2021-02-16T19:37:39
Reserved: 2020-04-08T00:00:00
Link: CVE-2020-11635
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-16T20:15:15.487
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-11635
JSON object: View
Redhat Information
No data.
CWE