NA - CVE-2023-37636 - A stored cross-site scripting (XSS)...
A stored cross-site scripting (XSS) vulnerability in UVDesk Community Skeleton v1.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Message field...
NA - CVE-2021-26734 - Zscaler Client Connector Installer on Windows...
Zscaler Client Connector Installer on Windows before version 3.4.0.124 improperly handled directory junctions during uninstallation. A local adversary may be able to delete folders in an elevated...
NA - CVE-2021-26735 - The Zscaler Client Connector Installer and...
The Zscaler Client Connector Installer and Unsintallers for Windows prior to 3.6 had an unquoted search path vulnerability. A local adversary may be able to execute code with SYSTEM privileges.
NA - CVE-2021-26736 - Multiple vulnerabilities in the Zscaler Client...
Multiple vulnerabilities in the Zscaler Client Connector Installer and Uninstaller for Windows prior to 3.6 allowed execution of binaries from a low privileged path. A local adversary may be able...
NA - CVE-2021-26737 - The Zscaler Client Connector for macOS prior to...
The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A local adversary without sufficient privileges may be able to shutdown the Zscaler tunnel by...
NA - CVE-2021-26738 - Zscaler Client Connector for macOS prior to 3.7...
Zscaler Client Connector for macOS prior to 3.7 had an unquoted search path vulnerability via the PATH variable. A local adversary may be able to execute code with root privileges.
NA - CVE-2023-28793 - Buffer overflow vulnerability in the signelf...
Buffer overflow vulnerability in the signelf library used by Zscaler Client Connector on Linux allows Code Injection. This issue affects Zscaler Client Connector for Linux: before 1.3.1.6.