CVE-2025-15641 - Vulnerability Details - OpenCVE

Netskope was notified about a potential gap in its Netskope Client for Windows systems where a malicious insider with administrative privileges can potentially tamper with the customer IOCTL by sending crafted IOCTL requests to the driver. A successful exploit can result in the bypassing of all anti-tampering protections for the NSClient.Affected Product(s) and Version(s) * Product Name: Netskope Client * Affected Platform: Windows * Affected Version: All version below R138

Attack Vector Local

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.netskope.com/resources/netskope-resources/netskope-security-advisory-nskpsa-2025-007

History

Wed, 17 Jun 2026 05:15:00 +0000

Type	Values Removed	Values Added
Description		Netskope was notified about a potential gap in its Netskope Client for Windows systems where a malicious insider with administrative privileges can potentially tamper with the customer IOCTL by sending crafted IOCTL requests to the driver. A successful exploit can result in the bypassing of all anti-tampering protections for the NSClient.Affected Product(s) and Version(s) * Product Name: Netskope Client * Affected Platform: Windows * Affected Version: All version below R138
Title		Netskope Client Exposed IOCTL with Insufficient Access Controls
Weaknesses		CWE-782
References		https://www.netskope.com/resources/netskope-resources/netskope-security-advisory-nskpsa-2025-007
Metrics		cvssV4_0 `{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N'}`

MITRE

Status: PUBLISHED

Assigner: Netskope

Published: 2026-06-17T01:31:51.228Z

Updated: 2026-06-17T01:50:01.108Z

Reserved: 2026-04-22T15:49:43.557Z

Link: CVE-2025-15641

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-15641", "assignerOrgId": "bf992f6a-e49d-4e94-9479-c4cff32c62bc", "state": "PUBLISHED", "assignerShortName": "Netskope", "dateReserved": "2026-04-22T15:49:43.557Z", "datePublished": "2026-06-17T01:31:51.228Z", "dateUpdated": "2026-06-17T01:50:01.108Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "bf992f6a-e49d-4e94-9479-c4cff32c62bc", "shortName": "Netskope", "dateUpdated": "2026-06-17T01:50:01.108Z"}, "title": "Netskope Client Exposed IOCTL with Insufficient Access Controls", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-782", "description": "CWE-782 Exposed IOCTL with insufficient access control", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-176", "descriptions": [{"lang": "en", "value": "CAPEC-176 Configuration/Environment Manipulation"}]}], "affected": [{"vendor": "Netskope", "product": "Netskope Client", "platforms": ["Windows"], "versions": [{"status": "affected", "version": "0", "lessThan": "138", "versionType": "custom"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "Netskope was notified about a potential gap in its Netskope Client for Windows systems where a malicious insider with administrative privileges can potentially tamper with the customer IOCTL by sending crafted IOCTL requests to the driver. A successful exploit can result in the bypassing of all anti-tampering protections for the NSClient.Affected Product(s) and Version(s)\n * Product Name: Netskope Client\n * Affected Platform: Windows\n * Affected Version: All version below R138", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Netskope was notified about a potential gap in its Netskope Client for Windows systems where a malicious insider with administrative privileges can potentially tamper with the customer IOCTL by sending crafted IOCTL requests to the driver. A successful exploit can result in the bypassing of all anti-tampering protections for the NSClient.<div>Affected Product(s) and Version(s)<br><ul><li>Product Name: Netskope Client</li><li>Affected Platform: Windows</li><li>Affected Version: All version below R138</li></ul></div>"}]}], "references": [{"url": "https://www.netskope.com/resources/netskope-resources/netskope-security-advisory-nskpsa-2025-007"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.8, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N"}}], "workarounds": [{"lang": "en", "value": "No workaround available", "supportingMedia": [{"type": "text/html", "base64": false, "value": "No workaround available"}]}], "solutions": [{"lang": "en", "value": "Use any of the below version of Netskope Client:\n * R138 and above\n * R135 (135.1.19.2670 and above )\n * R132 (132.0.27.2671 and above )", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Use any of the below version of Netskope Client:<br><ul><li>R138 and above</li><li>R135 (135.1.19.2670 and above )</li><li>R132 (132.0.27.2671 and above )</li></ul>"}]}], "exploits": [{"lang": "en", "value": "Netskope is not aware of any active exploitation of the security issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Netskope is not aware of any active exploitation of the security issue."}]}], "credits": [{"lang": "en", "value": "Netskope credits Juan Pablo Barriga for reporting this flaw.", "type": "finder"}], "source": {"advisory": "NSKPSA-2025-007", "discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 1.0.2"}}}}