Privilege Escalation Vulnerability in Netskope Client
CVE-2025-0309

6MEDIUM

Key Information:

Vendor: Netskope
Status: Netskope Client
Vendor: CVE Published:; 14 August 2025

What is CVE-2025-0309?

A vulnerability in the Netskope Client arises from insufficient validation of server connection endpoints. This flaw permits local users to exploit the system by connecting to unauthorized servers that utilize Public Signed CA TLS certificates. By sending crafted responses, these users may elevate their privileges, potentially compromising system integrity. It is essential for organizations using the Netskope Client to apply necessary mitigations to secure their environments against this type of exploit.

Affected Version(s)

Netskope Client 0 < 129.0.0

References

https://blog.amberwolf.com/blog/2025/august/breaking-into...

third-party-advisory

https://www.netskope.com/company/security-compliance-and-...

vendor-advisory

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2025
Vulnerability Reserved
Jan 7, 2025

Credit

Richard Warren