Vulnerabilities > Netskope > Netskope > 91.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-11-06 | CVE-2023-4996 | Improper Preservation of Permissions vulnerability in Netskope Netskope was made aware of a security vulnerability in its NSClient product for version 100 & prior where a malicious non-admin user can disable the Netskope client by using a specially-crafted package. | 8.8 |
2023-06-15 | CVE-2022-4149 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Netskope The Netskope client service (prior to R96) on Windows runs as NT AUTHORITY\SYSTEM which writes log files to a writable directory (C:\Users\Public\netSkope) for a standard user. | 7.0 |
2023-06-15 | CVE-2023-2270 | Path Traversal vulnerability in Netskope The Netskope client service running with NT\SYSTEM privileges accepts network connections from localhost to start various services and execute commands. | 7.8 |