Vulnerabilities > Zscaler > Secure Internet AND Saas Access > High

DATE CVE VULNERABILITY TITLE RISK
2024-01-31 CVE-2023-28807 Improper Certificate Validation vulnerability in Zscaler Secure Internet and Saas Access
In Zscaler Internet Access (ZIA) a mismatch between Connect Host and Client Hello's Server Name Indication (SNI) enables attackers to evade network security controls by hiding their communications within legitimate traffic.
network
low complexity
zscaler CWE-295
7.5