CVE-2025-0309

An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA TLS certificates and send specially crafted responses to elevate privileges.

CVSS

No CVSS.

References

Link	Resource
https://blog.amberwolf.com/blog/2025/august/breaking-into-your-network-zer0-effort/
https://www.netskope.com/company/security-compliance-and-assurance/security-advisories-and-disclosures/netskope-security-advisory-nskpsa-2025-002

Configurations

No configuration.

History

15 Aug 2025, 13:15

Type	Values Removed	Values Added
CWE		CWE-295

14 Aug 2025, 13:11

Type	Values Removed	Values Added
Summary		(es) Una validación insuficiente en el endpoint de conexión del servidor en Netskope Client permite a los usuarios locales elevar privilegios en el sistema. Esta validación insuficiente permite a Netskope Client conectarse a cualquier otro servidor con certificados TLS de CA firmados públicamente y enviar respuestas manipuladas específicamente para elevar privilegios.

14 Aug 2025, 05:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-14 05:15

Updated : 2025-08-15 13:15

NVD link : CVE-2025-0309

Mitre link : CVE-2025-0309

CVE.ORG link : CVE-2025-0309

JSON object : View

Products Affected

No product.

CWE

CWE-295

Improper Certificate Validation

{"id": "CVE-2025-0309", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "psirt@netskope.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.0, "Automatable": "NOT_DEFINED", "attackVector": "PHYSICAL", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:P/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "LOW", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-08-14T05:15:26.690", "references": [{"url": "https://blog.amberwolf.com/blog/2025/august/breaking-into-your-network-zer0-effort/", "source": "psirt@netskope.com"}, {"url": "https://www.netskope.com/company/security-compliance-and-assurance/security-advisories-and-disclosures/netskope-security-advisory-nskpsa-2025-002", "source": "psirt@netskope.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-295"}]}], "descriptions": [{"lang": "en", "value": "An insufficient validation on the server connection endpoint in Netskope Client allows local users to elevate privileges on the system. The insufficient validation allows Netskope Client to connect to any other server with Public Signed CA TLS certificates and send specially crafted responses to elevate privileges."}, {"lang": "es", "value": "Una validaci\u00f3n insuficiente en el endpoint de conexi\u00f3n del servidor en Netskope Client permite a los usuarios locales elevar privilegios en el sistema. Esta validaci\u00f3n insuficiente permite a Netskope Client conectarse a cualquier otro servidor con certificados TLS de CA firmados p\u00fablicamente y enviar respuestas manipuladas espec\u00edficamente para elevar privilegios."}], "lastModified": "2025-08-15T13:15:30.470", "sourceIdentifier": "psirt@netskope.com"}