CVE-2025-0309
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-14

Last updated on: 2025-08-15

Assigner: Netskope

Description
An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA TLS certificates and send specially crafted responses to elevate privileges.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-14
Last Modified
2025-08-15
Generated
2026-05-07
AI Q&A
2025-08-14
EPSS Evaluated
2026-05-05
NVD
CVE-2025-0309
EUVD
EUVD-2025-24661
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
netskope netskope_client r129
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-295 The product does not validate, or incorrectly validates, a certificate.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is due to insufficient validation on the server connection endpoint in the Netskope Client. It allows local users to elevate their privileges on the system by connecting the client to any server with Public Signed CA TLS certificates and sending specially crafted responses that exploit this validation flaw.


How can this vulnerability impact me? :

The vulnerability can allow local users to gain elevated privileges on the affected system, potentially leading to unauthorized access, control over system resources, and the ability to perform actions beyond their intended permissions.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart