**Name of the Vulnerable Software and Affected Versions:**

Netskope Client for Windows (affected versions not specified)

**Description:**

An insufficient validation exists on the server connection endpoint in Netskope Client, allowing local users to elevate privileges on the system. This insufficient validation enables the client to connect to any server presenting publicly signed CA TLS certificates and transmit specifically crafted responses to escalate privileges.

**Recommendations:**

At the moment, there is no information about a newer version that contains a fix for this vulnerability.