What is CVE-2025-0309?

CVE-2025-0309 is a vulnerability in Netskope Client, classified under Improper Certificate Validation. Published 2025-08-14.

Is CVE-2025-0309 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Netskope Client

CVE-2025-0309

An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA…

Vulnerability class: Improper Certificate Validation

EPSS: 0.002 (7.0th percentile) — read the EPSS interpretation.

Affected products

Netskope Client — versions 0

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

Public proof-of-concept exploits

AmberWolfCyber/UpSkope
AmberWolfCyber/NachoVPN
nomi-sec/PoC-in-GitHub

References

psirt@netskope.com (third-party-advisory)
psirt@netskope.com (vendor-advisory)

Frequently asked questions

What is CVE-2025-0309?: CVE-2025-0309 is a vulnerability in Netskope Client, classified under Improper Certificate Validation. Published 2025-08-14.
Is CVE-2025-0309 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.