CVE-2024-11616
CVE-2024-11616 affects Netskope Endpoint DLP’s Content Control Driver prior to R119. The issue is a double-fetch heap overflow in EpdlpSetUsbAction where NumberOfBytes (ExAllocatePoolWithTag) and Length (RtlCopyMemory) each dereference user input; if the length increases between calls, RtlCopyMem...