CVE-2024-7402

Summary

Netskope has identified a potential gap in its agent (Netskope Client) in which a malicious insider can potentially tamper the Netskope Client configuration by performing MITM (Man-in-the-Middle) activity on the Netskope Client communication channel. A successful exploitation would require administrative privileges on the machine, and could result in temporarily altering the configuration of Netskope Client or permanently disabling or removing the agent from the machine.

Affected Software

VendorProductVersion RangeStatus
NetskopeNetskope Client0 < 123.0.16, 126.0.9, 129.0.0affected

Weaknesses

  • CWE-354: CWE-354

Workarounds

Prevent users from installing or adding 3rd party certificates in their machine's Operating System trust store. This will prevent users from performing MITM and tampering with configurations.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References