CVE-2023-28803 Information

Description

An authentication bypass by spoofing of a device with a synthetic IP address is possible in Zscaler Client Connector on Windows allowing a functionality bypass. This issue affects Client Connector: before 3.9.

Reference

https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023