8 matches found
CVE-2025-15584 Endpoint DLP Driver Filter Communication Port Integer Overflow
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow an unprivileged user to trigger an integer overflow within the filter communication port, leading to a Blue-Screen-of-Death...
Netskope Endpoint DLP Module 安全漏洞
The Netskope Endpoint DLP Module is a data loss protection module developed by the American company Netskope for endpoint devices. The Netskope Endpoint DLP Module has a security vulnerability, which stems from integer overflow in the DLL injector. This vulnerability could allow privileged users ...
CVE-2025-11156
CVE-2025-11156 affects the Netskope NS Client on Windows. A local, authenticated user with Administrator privileges can improperly load the NS Client driver as a generic kernel service, triggering a system crash (Blue Screen of Death) and a Denial of Service on the affected machine. The descripti...
CVE-2025-11156 Improper Service Loading Vulnerability in Netskope Endpoint DLP Driver
Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, a local, authenticated user with Administrator privileges can improperly load the driver as a generic kernel service. This triggers the flaw, causing a system crash...
CVE-2025-5942 Heap Overflow in Netskope Endpoint DLP Driver
Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, an unprivileged user can trigger a heap overflow in the epdlpdrv.sys driver, leading to a Blue-Screen-of-Death BSOD. Successful exploitation can also potentially be...
CVE-2024-11616
Netskope was made aware of a security vulnerability in Netskope Endpoint DLP’s Content Control Driver where a double-fetch issue leads to heap overflow. The vulnerability arises from the fact that the NumberOfBytes argument to ExAllocatePoolWithTag, and the Length argument for RtlCopyMemory, both...
CVE-2024-11616 Double-fetch heap overflow
Netskope was made aware of a security vulnerability in Netskope Endpoint DLP’s Content Control Driver where a double-fetch issue leads to heap overflow. The vulnerability arises from the fact that the NumberOfBytes argument to ExAllocatePoolWithTag, and the Length argument for RtlCopyMemory, both...
CVE-2024-11616
CVE-2024-11616 affects Netskope Endpoint DLP’s Content Control Driver prior to R119. The issue is a double-fetch heap overflow in EpdlpSetUsbAction where NumberOfBytes (ExAllocatePoolWithTag) and Length (RtlCopyMemory) each dereference user input; if the length increases between calls, RtlCopyMem...