Netskope Netskope Client
14 CVEs affecting Netskope Netskope Client. Latest disclosed: 2026-06-17. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-12091 | High | 7.8 | 2019-09-26 | The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The… |
CVE-2019-10882 | High | 7.8 | 2019-09-26 | The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The… |
CVE-2024-7401 | High | 7.5 | 2024-08-26 | Netskope was notified about a security gap in Netskope Client enrollment process where NSClient is using a static token “Orgkey” as authentication parameter. S… |
CVE-2022-4149 | High | 7.0 | 2023-06-15 | The Netskope client service (prior to R96) on Windows runs as NT AUTHORITY\SYSTEM which writes log files to a writable directory (C:\Users\Public\netSkope) for… |
CVE-2023-2270 | High | 7.0 | 2023-06-15 | The Netskope client service running with NT\SYSTEM privileges accepts network connections from localhost to start various services and execute commands. The co… |
CVE-2023-4996 | Medium | 6.6 | 2023-11-06 | Netskope was made aware of a security vulnerability in its NSClient product for version 100 & prior where a malicious non-admin user can disable the Netskope c… |
CVE-2025-15642 | | 2026-06-17 | Netskope is notified about a potential gap in its Netskoped Client for Windows systems where a malicious insider with admin privileges can lead to bypassing th… | |
CVE-2025-15641 | | 2026-06-17 | Netskope was notified about a potential gap in its Netskope Client for Windows systems where a malicious insider with administrative privileges can potentially… | |
CVE-2025-11156 | | 2025-11-28 | Netskope was notified about a potential gap in its agent (NS Client) on Windows systems. If this gap is successfully exploited, a local, authenticated user wi… | |
CVE-2025-5942 | | 2025-08-14 | Netskope was notified about a potential gap in its agent (NS Client) on Windows systems. If this gap is successfully exploited, an unprivileged user can trigg… | |
CVE-2025-5941 | | 2025-08-14 | Netskope is notified about a potential gap in its agent (NS Client) in which a malicious actor could trigger a memory leak by sending a crafted DNS packet to a… | |
CVE-2025-0309 | | 2025-08-14 | An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient valida… | |
CVE-2024-7402 | | 2025-08-14 | Netskope has identified a potential gap in its agent (Netskope Client) in which a malicious insider can potentially tamper the Netskope Client configuration by… | |
CVE-2024-13177 | | 2025-04-15 | Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not properly validate the path of the file “nsinstallation”. A st… |