CVE-2025-0309

Name of the Vulnerable Software and Affected Versions Netskope Client for Windows (affected versions not specified)

Description An insufficient validation exists on the server connection endpoint within Netskope Client. This flaw allows local users to elevate their privileges on the system. The inadequate validation permits Netskope Client to connect to any server utilizing publicly signed CA TLS certificates and transmit specifically crafted responses, ultimately leading to privilege escalation. The issue was discussed during a DEF CON #ZeroTrustTotalBust talk and a proof-of-concept (PoC) exploit has been released. The vulnerability allows a rogue server to manipulate responses and gain elevated access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.