CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added last week•10 views

EUVD-2025-210211

Netskope is notified about a potential gap in its Netskoped Client for Windows systems where a malicious insider with admin privileges can lead to bypassing the NSClient Tamper Protections due to weak Discretionary Access Control List DACLs on the service object and related registry keys,. Produc...

6.8CVSS5.3AI score0.00143EPSS

NVD•added last week•5 views

CVE-2025-15641

6.8CVSS0.00163EPSS

NVD•added last week•7 views

CVE-2025-15642

6.8CVSS0.00143EPSS

NVD•added 2026/04/29 4:16 p.m.•5 views

CVE-2026-2810

Netskope was notified about a potential gap in the Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow an unprivileged user to trigger an out-of-bounds read within a driver, leading to a Blue-Screen-of-Death BSOD. Successful...

6.8CVSS0.00116EPSS

Vulnrichment•added 2026/04/29 3:23 p.m.•5 views

CVE-2026-2810 Endpoint DLP Driver Out-of-Bounds Read

6.8CVSS5.2AI score0.00116EPSS

CNNVD•added 2026/04/29 12:0 a.m.•9 views

Netskope Client 缓冲区错误漏洞

Netskope Client is a client program developed by Netskope Corporation in the United States, used for connecting and managing the Netskope cloud platform. Netskope Client has a buffer error vulnerability, which stems from potential flaws in the endpoint DLP module. This vulnerability may allow...

6.8CVSS6AI score0.00116EPSS

Positive Technologies•added 2026/04/29 12:0 a.m.•8 views

PT-2026-35948

6.8CVSS5.2AI score0.00116EPSS

Exploits0References3

RedhatCVE•added 2026/03/26 3:8 p.m.•3 views

CVE-2026-2809

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...

EUVD•added 2026/03/17 9:31 p.m.•3 views

EUVD-2025-208808

Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow an unprivileged user to trigger an integer overflow within the filter communication port, leading to a Blue-Screen-of-Death...

6.8CVSS5.8AI score0.00109EPSS

EUVD•added 2026/03/17 9:31 p.m.•7 views

EUVD-2026-12641

CVE•added 2026/03/17 8:20 p.m.•14 views

CVE-2026-2809

CVE-2026-2809 concerns Netskope’s Endpoint DLP Driver DLL Injector on Windows. Reported as a potential integer overflow in the DLL Injector, exploiting it may cause a local BSOD and denial of service, with exploitation requiring the Endpoint DLP module to be enabled in the client configuration. C...

NVD•added 2026/03/17 8:16 p.m.•4 views

CVE-2025-15584

6.8CVSS0.00109EPSS

Vulnrichment•added 2026/03/17 6:55 p.m.•2 views

CVE-2025-15584 Endpoint DLP Driver Filter Communication Port Integer Overflow

6.8CVSS5.8AI score0.00109EPSS

ATTACKERKB•added 2026/03/17 6:55 p.m.•6 views

CVE-2025-15584

6.8CVSS5.8AI score0.00109EPSS

CNNVD•added 2026/03/17 12:0 a.m.•4 views

Netskope Endpoint DLP Module 安全漏洞

The Netskope Endpoint DLP Module is a data loss protection module developed by the American company Netskope for endpoint devices. The Netskope Endpoint DLP Module has a security vulnerability, which stems from integer overflow in the DLL injector. This vulnerability could allow privileged users ...

CNNVD•added 2026/03/17 12:0 a.m.•6 views

Netskope Client 安全漏洞

Netskope Client is a client program developed by Netskope Corporation in the United States, used for managing the Netskope cloud platform. There is a security vulnerability in Netskope Client, which stems from integer overflow in the filter communication port. This vulnerability may allow...

6.8CVSS5.9AI score0.00109EPSS

RedhatCVE•added 2026/01/09 11:36 a.m.•6 views

CVE-2021-41388

Netskope client prior to 89.x on macOS is impacted by a local privilege escalation vulnerability. The XPC implementation of nsAuxiliarySvc process does not perform validation on new connections before accepting the connection. Thus any low privileged user can connect and call external methods...

7.8CVSS6.8AI score0.00228EPSS

RedhatCVE•added 2026/01/09 9:48 a.m.•6 views

CVE-2020-24576

Netskope Client through 77 allows low-privileged users to elevate their privileges to NT AUTHORITY\SYSTEM...

9CVSS6.9AI score0.02098EPSS

RedhatCVE•added 2026/01/07 9:10 a.m.•8 views

CVE-2019-12091

The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from command injection vulnerability. Local users can use this vulnerability to...

7.8CVSS7.8AI score0.00921EPSS