CVE-2023-28807

In Zscaler Internet Access (ZIA) a mismatch between Connect Host and Client Hello's Server Name Indication (SNI) enables attackers to evade network security controls by hiding their communications within legitimate traffic.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.1 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
ZscalerCNA
5.1 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
VendorProductVersion
zscalersecure_internet_and_saas_access
𝑥
< 6.2r.290
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://help.zscaler.com/zia/configuring-advanced-settings#dns-optimization
https://help.zscaler.com/zia/configuring-advanced-settings#domain-fronting
https://help.zscaler.com/zia/configuring-advanced-settings#dns-optimization
https://help.zscaler.com/zia/configuring-advanced-settings#domain-fronting