This site uses JavaScript to provide a number of functions, to use this site please enable JavaScript in your browser.

Zscaler: A Leader in the 2023 Gartner® Magic Quadrant™ for Security Service Edge (SSE)

Get the full report

gartner-mq-security-service-report

Your world, secured

Experience the transformative power of zero trust.

The Zscaler Difference

Experience the World’s Largest Security Cloud

Customer Success Stories

Analyst Recognition

Machine Learning and AI at Zscaler

Reduce Your Carbon Footprint

Zero Trust Fundamentals

What is Zero Trust?

What Is Security Service Edge (SSE)?

What Is Secure Access Service Edge (SASE)?

What Is Zero Trust Network Access (ZTNA)?

What Is Secure Web Gateway (SWG)?

What Is Cloud Access Security Broker (CASB)?

What Is Cloud Native Application Protection Platform (CNAPP)?

Zero Trust Resources

Secure Your Users

Secure Your Users

Provide users with seamless, secure, reliable access to applications and data.

Secure Your Workloads

Secure Your Workloads

Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.

Secure Your IoT and OT

Secure Your IoT and OT

Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.

Products

Transform your organization with 100% cloud native services

Secure Internet Access (ZIA)

Secure Private Access (ZPA)

Data Protection (CASB/DLP)

Digital Experience (ZDX)

Posture Control

Partner Integrations Industry and Market Solutions

Solution Areas

Propel your business with zero trust solutions that secure and connect your resources

Stop Cyberattacks

Zero Trust App Access

VPN Alternative

Accelerate M&A Integration

Optimize Digital Experiences

Zero Trust Branch Connectivity

Build and Run Secure Cloud Apps

Zero Trust for IoT/OT

Zero Trust for Private 5G

Find a product or solution

Zero Trust Exchange Platform

Learn how Zscaler delivers zero trust with a cloud native platform that is the world’s largest security cloud

Zero Trust Exchange

Transform with Zero Trust Architecture

Propel your transformation journey

Secure Digital Transformation

Network Transformation

Application Transformation

Security Transformation

Secure Your Business Goals

Achieve your business and IT initiatives

Ensure Secure Business Continuity

Recession-Proof Your Enterprise

Secure Your Hybrid Workforce

Download Zscaler Client Connectors

Learn, connect, and get support.

Explore tools and resources to accelerate your transformation and secure your world

Amplifying the voices of real-world digital and zero trust pioneers

CXO REvolutionaries

Resource Center

Stay up to date on best practices

Resource Library

Customer Success Stories

Events & Trainings

Find programs, certifications, and events

Upcoming Events

Zscaler Academy

Interactive Zscaler Whiteboard Workshop

Security Research & Services

Get research and insights at your fingertips

ThreatLabz Analytics

Tools

Tools designed for you

Security Preview

Security and Risk Assessment

Security Advisory Updates

Disclose a Vulnerability

Executive Insights App

Ransomware Protection ROI Calculator

Community & Support

Connect and find support

Customer Success Center

Zenith Community

CXO REvolutionaries

Zscaler Help Portal

Explore the latest Zscaler Innovations

Industry & Market Solutions

See solutions for your industry and country

Financial Services

Resource Center

Stay up to date on best practices

Resource Library

Customer Success Stories

Events & Trainings

Find programs, certifications, and events

Upcoming Events

Zscaler Academy

Interactive Zscaler Whiteboard Workshop

Security Research & Services

Get research and insights at your fingertips

ThreatLabz Analytics

Tools

Tools designed for you

Security Preview

Security and Risk Assessment

Security Advisory Updates

Disclose a Vulnerability

Executive Insights App

Ransomware Protection ROI Calculator

Community & Support

Connect and find support

Customer Success Center

Zenith Community

CXO REvolutionaries

Zscaler Help Portal

Explore the latest Zscaler Innovations

Industry & Market Solutions

See solutions for your industry and country

Financial Services

Discover how it began and where it’s going

Meet our partners and explore system integrators and technology alliances

News & Announcements

Stay up to date with the latest news

Leadership Team

Meet our management team

Partner Integrations

Explore best-in-class partner integrations to help you accelerate digital transformation

Investor Relations

See news, stock information, and quarterly reports

Environmental, Social & Governance

Learn about our ESG approach

Join our mission

Find everything you need to cover Zscaler

Understand our adherence to rigorous standards

Zenith Ventures

Understand our adherence to rigorous standards

Zscaler Security Advisories

desktop hero

Security Advisory - November 13, 2018

Zscaler protects against 2 new vulnerabilities for Adobe Flash Player & Acrobat Reader.

Overview

Zscaler, working with Microsoft through their MAPP program, has proactively deployed protections for the following 2 vulnerabilities included in the November 2018 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the November release and deploy additional protections as necessary.

APSB18-40 – Security updates available for Adobe Acrobat and Reader.

Adobe has released security update for Adobe Acrobat and Reader for Windows and macOS. This update addresses an important vulnerability. Successful exploitation could lead to leak of user’s hashed NTLM password.

Severity: Important

Affected Software

Acrobat DC Continuous 2019.008.20080 and earlier versions for Windows and macOS
Acrobat Reader DC Continuous 2019.008.20080 and earlier versions for Windows and macOS
Acrobat 2017 Classic 2017 2017.011.30105 and earlier versions for Windows and macOS
Acrobat Reader 2017 Classic 2017 2017.011.30105 and earlier versions for Windows and macOS
Acrobat DC Classic 2015 2015.006.30456 and earlier versions for Windows and macOS
Acrobat Reader DC Classic 2015 2015.006.30456 and earlier versions for Windows and macOS

CVE-2018-15979 – Adobe Acrobat Reader Information Disclosure Vulnerability

This vulnerability is due to an incomplete patch of embedded go-to action in a PDF file. Exploitation leads to disclosure of information that can be abused to extract hashed NTLM credentials. The vulnerability exists due to the way Acrobat Reader engine handles certain action dictionaries.

APSB18-39 – Security updates available for Flash Player.

Adobe has released security update for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. These updates address important vulnerability in Adobe Flash Player 31.0.0.122 and earlier versions. Successful exploitation could lead to information disclosure.

Severity: Important

Affected Software

Adobe Flash Player Desktop Runtime 31.0.0.122 and earlier versions for Windows, macOS and Linux
Adobe Flash Player for Google Chrome 31.0.0.122 and earlier versions for Windows, macOS, Linux and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 31.0.0.122 and earlier versions for Windows 10 and 8.1

CVE-2018-15978 – Adobe Flash Player Out-of-bounds Read vulnerability.

This vulnerability is an instance of Out-of-bounds read vulnerability which leads to information disclosure.