Netskope named a Leader in the 2024 Gartner® Magic Quadrant™ for Security Service Edge. Get the report
Changing the way networking and security work together.
Learn why 2024 Gartner® Magic Quadrant™ named Netskope a Leader for Security Service Edge the third consecutive year.
Netskope serves more than 3,000 customers worldwide including more than 25 of the Fortune 100
We partner with security leaders to help you secure your journey to the cloud.
Netskope One is a converged security and network as a service platform.
Plan your path toward a faster, more secure, and more resilient network designed for the applications and users that you support.
Netskope One powers greater business agility with lightning speed and dependable resilience.
Netskope One is a cloud-native platform that offers converged security and networking services to enable your SASE and zero trust transformation.
NewEdge is the world’s largest, highest-performing security private cloud.
Netskope NewEdge is the world’s largest, highest-performing security private cloud and provides customers with unparalleled service coverage, performance and resilience.
Netskope partners with the strongest companies in enterprise technology.
The Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.
Protect against advanced and cloud-enabled threats and safeguard data across all vectors.
Intelligent Security Service Edge (SSE), Cloud Access Security Broker (CASB), Cloud Firewall, Next Generation Secure Web Gateway (SWG), and Private Access for ZTNA built natively into a single solution to help every business on its journey to Secure Access Service Edge (SASE) architecture.
Confidently provide secure, high-performance access to every remote user, device, site, and cloud.
Netskope Next Gen SASE Branch converges Context-Aware SASE Fabric, Zero-Trust Hybrid Security, and SkopeAI-powered Cloud Orchestrator into a unified cloud offering, ushering in a fully modernized branch experience for the borderless enterprise.
Netskope One SASE provides a cloud-native, fully-converged and single-vendor SASE solution.
Get your complimentary copy of the only guide to SASE design you’ll ever need.
Achieve agility and efficiency through digital transformation.
Meet the security challenges of today and tomorrow.
Embrace the regulatory frameworks shaping cybersecurity.
Netskope helps the largest agencies and enterprises in the world secure their journey to the cloud.
Choose Netskope GovCloud to accelerate your agency’s transformation.
Learn more about how Netskope can help you secure your journey to the cloud.
Driving Innovation in an Increasingly Remote Workforce
In this episode host Max Havey digs into the world of remote work and innovation.
Learn how Netskope enables security and networking transformation through security service edge (SSE)
Read how Netskope can enable the Zero Trust and SASE journey through security service edge (SSE) capabilities.
Stay ahead of the latest security trends and connect with your peers.
Replay sessions from the fourth annual SASE Week.
Everything you need to know in our cybersecurity encyclopedia.
Explore the security side of SASE, the future of network and protection in the cloud.
We help you stay ahead of cloud, data, and network security challenges.
Netskope is proud to participate in Vision 2045: an initiative aimed to raise awareness on private industry’s role in sustainability.
Our leadership team is fiercely committed to doing everything it takes to make our customers successful.
We are here for you and with you every step of the way, ensuring your success with Netskope.
Netskope training will help you become a cloud security expert.
Changing the way networking and security work together.
Netskope serves more than 3,000 customers worldwide including more than 25 of the Fortune 100
We partner with security leaders to help you secure your journey to the cloud.
Learn why 2024 Gartner® Magic Quadrant™ named Netskope a Leader for Security Service Edge the third consecutive year.
Get the reportNetskope One is a converged security and network as a service platform.
Netskope One powers greater business agility with lightning speed and dependable resilience.
NewEdge is the world’s largest, highest-performing security private cloud.
Netskope partners with the strongest companies in enterprise technology.
Plan your path toward a faster, more secure, and more resilient network designed for the applications and users that you support.
Get the white paperNetskope One is a cloud-native platform that offers converged security and networking services to enable your SASE and zero trust transformation.
Learn about Netskope OneNetskope NewEdge is the world’s largest, highest-performing security private cloud and provides customers with unparalleled service coverage, performance and resilience.
Learn about NewEdgeThe Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.
Learn about Cloud ExchangeProtect against advanced and cloud-enabled threats and safeguard data across all vectors.
Confidently provide secure, high-performance access to every remote user, device, site, and cloud.
Netskope One SASE provides a cloud-native, fully-converged and single-vendor SASE solution.
Intelligent Security Service Edge (SSE), Cloud Access Security Broker (CASB), Cloud Firewall, Next Generation Secure Web Gateway (SWG), and Private Access for ZTNA built natively into a single solution to help every business on its journey to Secure Access Service Edge (SASE) architecture.
Go to Products OverviewNetskope Next Gen SASE Branch converges Context-Aware SASE Fabric, Zero-Trust Hybrid Security, and SkopeAI-powered Cloud Orchestrator into a unified cloud offering, ushering in a fully modernized branch experience for the borderless enterprise.
Learn about Next Gen SASE BranchGet your complimentary copy of the only guide to SASE design you’ll ever need.
Get the eBookAchieve agility and efficiency through digital transformation.
Meet the security challenges of today and tomorrow.
Embrace the regulatory frameworks shaping cybersecurity.
Netskope helps the largest agencies and enterprises in the world secure their journey to the cloud.
Choose Netskope GovCloud to accelerate your agency’s transformation.
Learn about Netskope GovCloudLearn more about how Netskope can help you secure your journey to the cloud.
Learn how Netskope enables security and networking transformation through security service edge (SSE)
Stay ahead of the latest security trends and connect with your peers.
Everything you need to know in our cybersecurity encyclopedia.
Driving Innovation in an Increasingly Remote Workforce
In this episode host Max Havey digs into the world of remote work and innovation.
Read how Netskope can enable the Zero Trust and SASE journey through security service edge (SSE) capabilities.
Read the blogReplay sessions from the fourth annual SASE Week.
Explore sessionsExplore the security side of SASE, the future of network and protection in the cloud.
Learn about Security Service EdgeWe help you stay ahead of cloud, data, and network security challenges.
Our leadership team is fiercely committed to doing everything it takes to make our customers successful.
We are here for you and with you every step of the way, ensuring your success with Netskope.
Netskope training will help you become a cloud security expert.
Netskope is proud to participate in Vision 2045: an initiative aimed to raise awareness on private industry’s role in sustainability.
Find out moreSecurity Advisory ID: NSKPSA-2023-003
Severity Rating: Medium
First Communicated: Oct 4, 2023
Overall CVSS Score: 6.6
Version: 1.0
Description
Netskope was made aware of a security vulnerability in its NSClient product where a malicious non-admin user can disable the Netskope client by using a specially-crafted package. The root cause of the problem was a user control code when called by a Windows ServiceController did not validate the permissions associated with the user before executing the user control code. This user control code had permissions to terminate the NSClient service.
Affected Product(s) and Version(s)
Product – Netskope Client
Platform – Windows
Version – R100 & Prior
CVE-ID(s)
CVE-2023-4996
Remediation
Netskope patched the issue and released a new version. The issue was fixed in Release101. Customers are recommended to upgrade their client to the versions R101 or greater. Netskope download Instructions – Download Netskope Client and Scripts – Netskope Support
Workaround
There are no workarounds available for this issue.
General Security Best Practices
Netskope recommends all our customers to keep their environments updated with latest version of the software and also enable and configure the secure hardening configurations available in the platform for the application: https://support.netskope.com/s/article/Secure-Tenant-Configuration
Special Notes and Acknowledgement
Netskope credits Alexander Katziv from Novartis for reporting this flaw.
Exploitation and Public Disclosures
Netskope is not aware of any public exploitations of the issue till the advisory is published.
Revision History
Version | Date | Section | Notes |
---|---|---|---|
1.0 | October 4, 2023 | Initial Notification |
Legal Disclaimer
To the maximum extent permitted by applicable law, information provided in this notice is provided “as is” without warranty of any kind. Your use of the information in this notice or materials linked herein are at your own risk. This notice and all aspects of the Netskope Product Security Incident Response Policy are subject to change without notice. Response is not guaranteed for any specific issue or class of issues. Your entitlements regarding warranties, support and maintenance, including vulnerabilities in any Netskope software or service, are governed solely by the applicable master agreement between Netskope and you. The statements in this notice do not modify, enlarge or otherwise amend any of your rights under the applicable master agreement, or create any additional warranties or commitments.
About Netskope
Netskope, the SASE leader, safely and quickly connects users directly to the internet, any application, and their infrastructure from any device, on or off the network. With CASB, SWG, and ZTNA built natively in a single platform, the Netskope Security Cloud provides the most granular context, via patented technology, to enable conditional access and user awareness while enforcing zero trust principles across data protection and threat prevention everywhere. Unlike others who force tradeoffs between security and networking, Netskope’s global security private cloud provides full compute capabilities at the edge.
Netskope is fast everywhere, data-centric, and cloud-smart, all while enabling good digital citizenship and providing a lower total-cost-of-ownership.