PT-2026-50186 · Netskope · Netskope Client
Published
2026-06-17
·
Updated
2026-06-17
·
CVE-2025-15642
CVSS v4.0
6.8
Medium
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N |
Netskope is notified about a potential gap in its Netskoped Client for Windows systems where a malicious insider with admin privileges can lead to bypassing the NSClient Tamper Protections due to weak Discretionary Access Control List (DACLs) on the service object and related registry keys,.
- Product Name: Netskope Client
- Affected Platform: Windows
- Affected Version: All version below R138
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netskope Client