PT-2026-35948 · Netskope · Netskope Client
Tom Brice
·
Published
2026-04-29
·
Updated
2026-04-29
·
CVE-2026-2810
CVSS v4.0
6.8
Medium
| Vector | AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H |
Name of the Vulnerable Software and Affected Versions
Netskope Client on Windows (affected versions not specified)
Description
A gap in the Endpoint DLP Module for Netskope Client on Windows systems allows an unprivileged user to trigger an out-of-bounds read within a driver. An out-of-bounds read occurs when a program reads data past the end of the intended buffer. This can lead to a Blue-Screen-of-Death (BSOD), resulting in a denial-of-service for the local machine. Exploitation requires the Endpoint DLP module to be enabled in the client configuration.
Recommendations
As a temporary workaround, consider disabling the Endpoint DLP module in the client configuration to minimize the risk of exploitation.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netskope Client