Netskope Client Privilege Escalation Vulnerability on Mac OS

Vulnerability

A privilege escalation vulnerability has been identified in the Netskope Client for Mac OS. The issue arises because the postinstall script fails to properly validate the path of the 'nsinstallation' file. This flaw allows a standard user to create a symbolic link of 'nsinstallation' to escalate the privileges of another file on the system. The vulnerability affects Netskope Client versions prior to 123.0, prior to 117.1.11.2310, and prior to 120.1.10.2306.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation on the affected system.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netskope Client Privilege Escalation Vulnerability on Mac OS

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating