Medium severityNVD Advisory· Published Apr 15, 2025· Updated Apr 15, 2026
CVE-2024-13177
CVE-2024-13177
Description
Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not properly validate the path of the file “nsinstallation”. A standard user could potentially create a symlink of the file “nsinstallation” to escalate the privileges of a different file on the system. This issue affects Netskope Client: before 123.0, before 117.1.11.2310, before 120.1.10.2306.
Affected products
1- Range: <123.0, <117.1.11.2310, <120.1.10.2306
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.