CNNVD-202508-313 Information

CNNVD ID

CNNVD-202508-313

Related CVE

CVE-2025-54982

• CNNVD Published: 2025-08-05

Description (Chinese)

Zscaler Client Connector是Zscaler公司的一个轻量级代理。 Zscaler Client Connector存在安全漏洞，该漏洞源于SAML身份验证机制中加密签名验证不当，可能导致身份验证滥用。

Description (English)

Zscaler Clinic Contractor is a lightweight agent of Zscaler. Zscaler Clinic Contractor has a security loophole, which stems from the improper authentication of encrypted signatures in the SAML identification mechanism, which may lead to misuse of authentication.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Zscaler

Published

2025-08-05

Last Modified

2026-02-24

References

https://help.zscaler.com/zia/about-identity-providers