CVE-2025-0309 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validat…
Medium CVSS: 6.0

CVE-2025-0309

An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA TLS certificates and send specially crafted responses to elevate privileges.
Vendor
-
Product
-
CWE
CWE-295
Yayın Tarihi
2025-08-14 05:15:26
Güncelleme
2025-08-15 13:15:30
Source Identifier
psirt@netskope.com
KEV Date Added
-

Kategoriler

CWE-295 MEDIUM 2025

Referanslar

https://blog.amberwolf.com/blog/2025/august/breaking-into-your-network-zer0-effort/ https://www.netskope.com/company/security-compliance-and-assurance/security-advisories-and-disclosures/netskope-security-advisory-nskpsa-2025-002