EmpresaSeguridad, cumplimiento y garantíaSecurity Advisories and Disclosures

Security Advisories and Disclosures

At Netskope, we take our responsibility to protect our customers’ information and the services we provide to them very seriously. As such, we thank you for visiting our page and learning more. On this site you will learn about our process as well disclosed vulnerabilities.

Netskope Product Security Incident Response Team (PSIRT)

Netskope PSIRT is the centralized process through which Netskope customers, security researchers, industry groups, government organizations, or vendors report potential Netskope security vulnerabilities.

The Netskope team manages the receipt, investigation and internal coordination of security vulnerability information related to all Netskope products, offerings and websites. This team then coordinates with each individual Netskope product and solution team to investigate, and if needed, identify the appropriate response plan. Maintaining communication between all involved parties, both internal and external, is a key component of Netskope’s vulnerability response process.

Advisories and Disclosures

We strongly believe in responsible and coordinated disclosures of vulnerabilities that may affect the services we provide. Public disclosure of vulnerabilities is an essential part of the vulnerability disclosure process and is one of the many paths that lead to making software better and enables learnings that makes the security community better.

 

Security Advisory IDSeverity RatingFix VersionFix Description
NSKPSA2020-005CriticalRelease 81Netskope Client Stack Buffer Overflow
NSKPSA2020-004CriticalRelease 81Netskope Client Stack Buffer Overflow
NSKPSA2020-002HighRelease 79Netskope Admin UI CSV Injection
NSKPSA2020-001HighRelease 78Fix for Privilege Escalation Vulnerability Discovered in Netskope Windows Client

Report a security vulnerability

We appreciate your partnership and value your decision to make us one of your trusted security partners. We believe a partnership is centered on working together, delivering transparency and commitment to making it better. If you have questions or concerns please contact your Technical Success Manager or write to Netskope Product Security Incident Response Team, [email protected].

Technical Support

Customers and other entitled users should report any potential security vulnerabilities they may discover in Netskope products or offerings via normal Netskope Technical Support processes.

Go to support site
Support Portal

Reporting a vulnerability

Third party researchers and other security entities can report potential security vulnerabilities in Netskope products, offerings, or websites.

Política de divulgación de vulnerabilidades
Formación técnica en línea de introducción a Netskope Security Cloud (eLearning)
Technical Support

Customers and other entitled users should report any potential security vulnerabilities they may discover in Netskope products or offerings via normal Netskope Technical Support processes.

Go to support site
Reporting a vulnerability

Third party researchers and other security entities can report potential security vulnerabilities in Netskope products, offerings, or websites.

Política de divulgación de vulnerabilidades

Política de divulgación de vulnerabilidades

En Netskope, nos tomamos muy en serio nuestra responsabilidad de proteger la información de nuestros usuarios y los servicios que les proporcionamos.

 

Linked below is our Vulnerability Disclosure Policy. The Vulnerability Disclosure Policy describes what systems and types of research are covered under this policy, how to send us vulnerability reports, and how long we ask security researchers to wait before publicly disclosing vulnerabilities.