Tampering Vulnerability in Netskope Client for Windows Systems
CVE-2025-15641

6.8MEDIUM

Key Information:

Vendor: Netskope
Status: Netskope Client
Vendor: CVE Published:; 17 June 2026

Badges

👾 Exploit Exists

What is CVE-2025-15641?

Netskope has identified a notable vulnerability in the Netskope Client on Windows systems. An insider with administrative privileges could exploit this flaw by sending specially crafted IOCTL requests to the driver, which may lead to the potential for manipulation of the customer IOCTL. This situation paves the way for bypassing the established anti-tampering protections within the NSClient, raising significant concerns for user security and data integrity.

Affected Version(s)

Netskope Client Windows 0

References

https://www.netskope.com/resources/netskope-resources/net...

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jun 17, 2026
Vulnerability published
Jun 17, 2026
Vulnerability Reserved
Apr 22, 2026

Credit

Netskope credits Juan Pablo Barriga for reporting this flaw.

CVE-2025-15641 Data

JSON