Zscaler Security Advisories

To learn more about Zscaler security policies and publications, visit Zscaler Security.

If you believe you've discovered a security vulnerability on or within a Zscaler product, service, or application, we encourage you to inform us as soon as possible through our Vulnerability Disclosure Program.

CVE-2025-29927: Next.js Middleware Authorization Bypass Flaw
AI-Driven Threat Detection: Revolutionizing Cyber Defense
CoffeeLoader: A Brew of Stealthy Techniques
Shadow AI: A Growing Threat to Corporate Data Security
Can AI Detect and Mitigate Zero Day Vulnerabilities?
CVE-2025-24813: Apache Tomcat Vulnerable to RCE Attacks
AI in the Enterprise: Key Findings from the ThreatLabz 2025 AI Security Report
Why Zero Trust Architecture Is Superior to Traditional Security Models

Explore our latest security research

security advisories

Vulnerability Disclosure Program

Report security vulnerabilities to the Zscaler security team

Disclose a vulnerability