CVE-2023-28807 Information

Description

In Zscaler Internet Access (ZIA) a mismatch between Connect Host and Client Hello’s Server Name Indication (SNI) enables attackers to evade network security controls by hiding their communications within legitimate traffic.

Reference

https://help.zscaler.com/zia/configuring-advanced-settings#domain-fronting https://help.zscaler.com/zia/configuring-advanced-settings#dns-optimization