CVE-2023-28794

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 6, 2023
Updated: Nov 14, 2023
CWE ID 346

Summary

CVE-2023-28794 is an Origin Validation Error vulnerability found in Zscaler Client Connector on Linux. The affected version is Zscaler Client Connector for Linux before 1.3.1.6. This vulnerability allows for Privilege Abuse. The base severity of this vulnerability is rated as MEDIUM, with a base score of 6.5 according to the National Vulnerability Database (NVD). The exploitability score is 2.8, and user interaction is required for the exploit to occur. It has a high impact on confidentiality and no impact on integrity or availability. The vulnerability can be remediated by updating to version 1.3.1.6 or later of Zscaler Client Connector for Linux.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-28794 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options