CVE-2021-26734
CVSS V2 None
CVSS V3 None
Description
Zscaler Client Connector Installer on Windows before version 3.4.0.124 improperly handled directory junctions during uninstallation. A local adversary may be able to delete folders in an elevated context.
Overview
- CVE ID
- CVE-2021-26734
- Assigner
- Zscaler
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-10-23T13:18:36.569Z
- Last Modified Date
- 2023-10-23T13:18:36.569Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://help.zscaler.com/zscaler-client-connector/client-connector-app-release-summary-2021 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2021-26734 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26734 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-24 15:23:58 | Added to TrackCVE |