Home

Description

An improper verification of a loaded library in Zscaler Client Connector on Mac < 4.2.0.241 may allow a local attacker to elevate their privileges.

PUBLISHED Reserved 2024-03-28 | Published 2025-06-04 | Updated 2025-06-04 | Assigner Zscaler




HIGH: 7.3CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

Problem types

CWE-346 Origin Validation Error

Product status

Default status
unaffected

Any version before 4.2.0.241
affected

Credits

Max Keasley reporter

References

help.zscaler.com/...e_version=4.2&deployment_date=2023-12-14

cve.org (CVE-2024-31127)

nvd.nist.gov (CVE-2024-31127)

Download JSON