CVE-2025-0309

MEDIUM

Netskope Client - Privilege Escalation

Title source: llm

Description

An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA TLS certificates and send specially crafted responses to elevate privileges.

Exploits (1)

nomisec WORKING POC 3 stars

by AmberWolfCyber · poc

https://github.com/AmberWolfCyber/UpSkope

View Code ZIP pw:eip

References (2)

[Various Sources] https://blog.amberwolf.com/blog/2025/august/breaking-into-your-network-zer0-effort/

[Various Sources] https://www.netskope.com/company/security-compliance-and-assurance/security-advisories-and-disclosures/netskope-security-advisory-nskpsa-2025-002

Scores

CVSS v4 6.0

EPSS 0.0002

EPSS Percentile 5.6%

CVSS:4.0/AV:P/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-295

Status published

Products (1)

Netskope/Netskope Client < 129.0.0

Published Aug 14, 2025

Tracked Since Feb 18, 2026