CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11635

The Zscaler Client Connector prior to 3.1.0 did not sufficiently validate RPC clients, which allows a local adversary to execute code with system privileges or perform limited actions for which they did not have privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2020-11635

Zscaler » Client Connector » Version: N/A

cpe:2.3:a:zscaler:client_connector:-
Zscaler » Client Connector » Version: 2.1

cpe:2.3:a:zscaler:client_connector:2.1
Zscaler » Client Connector » Version: 2.1.2

cpe:2.3:a:zscaler:client_connector:2.1.2
Zscaler » Client Connector » Version: 2.1.2.105

cpe:2.3:a:zscaler:client_connector:2.1.2.105
Zscaler » Client Connector » Version: 2.1.2.112

cpe:2.3:a:zscaler:client_connector:2.1.2.112
Zscaler » Client Connector » Version: 2.1.2.113

cpe:2.3:a:zscaler:client_connector:2.1.2.113
Zscaler » Client Connector » Version: 2.1.2.81

cpe:2.3:a:zscaler:client_connector:2.1.2.81
Zscaler » Client Connector » Version: 3.1

cpe:2.3:a:zscaler:client_connector:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11635

Products

Pricing

Contact Us