CVE-2023-28807

EUVD-2023-32442
In Zscaler Internet Access (ZIA) a mismatch between Connect Host and Client Hello's Server Name Indication (SNI) enables attackers to evade network security controls by hiding their communications within legitimate traffic.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.1 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
ZscalerCNA
5.1 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Affected Products (NVD)
VendorProductVersion
zscalersecure_internet_and_saas_access
𝑥
< 6.2r.290
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://help.zscaler.com/zia/configuring-advanced-settings#dns-optimization
https://help.zscaler.com/zia/configuring-advanced-settings#domain-fronting
https://help.zscaler.com/zia/configuring-advanced-settings#dns-optimization
https://help.zscaler.com/zia/configuring-advanced-settings#domain-fronting