What is the severity of CVE-2023-2270?

The severity of CVE-2023-2270 is high with a CVSS score of 7.8.

What is the affected software for CVE-2023-2270?

The affected software for CVE-2023-2270 is Netskope client version up to R100.

What is the description of CVE-2023-2270?

CVE-2023-2270 is a vulnerability in the Netskope client service that allows network connections from localhost to start services and execute commands.

How can I fix CVE-2023-2270?

To fix CVE-2023-2270, it is recommended to update to a version of Netskope client R100 or higher.

Are Microsoft Windows systems vulnerable to CVE-2023-2270?

No, Microsoft Windows systems are not vulnerable to CVE-2023-2270.

Vulnerability/
CVE-2023-2270

high

7.8

CWE

22 20

15/6/2023

28/8/2024

CVE-2023-2270: Local privilege escalation

First published: Thu Jun 15 2023(Updated: )

The Netskope client service running with NT\SYSTEM privileges accepts network connections from localhost to start various services and execute commands. The connection handling function of Netskope client before R100 in this service utilized a relative path to download and unzip configuration files on the machine. This relative path provided a way for local users to write arbitrary files at a location which is accessible to only higher privileged users. This can be exploited by local users to execute code with NT\SYSTEM privileges on the end machine.

Credit: psirt@netskope.com psirt@netskope.com

Affected Software	Affected Version	How to fix
All of
Microsoft Windows Operating System
Netskope	<100
Netskope	<100
Microsoft Windows Operating System

Remedy

Upgrade netskope client to R100 and above.

Never miss a vulnerability like this again

Reference Links

https://www.netskope.com/company/security-compliance-and-assurance/security-advisories-and-disclosures/netskope-security-advisory-nskpsa-2023-001

Frequently Asked Questions

What is the severity of CVE-2023-2270?
The severity of CVE-2023-2270 is high with a CVSS score of 7.8.
What is the affected software for CVE-2023-2270?
The affected software for CVE-2023-2270 is Netskope client version up to R100.
What is the description of CVE-2023-2270?
CVE-2023-2270 is a vulnerability in the Netskope client service that allows network connections from localhost to start services and execute commands.
How can I fix CVE-2023-2270?
To fix CVE-2023-2270, it is recommended to update to a version of Netskope client R100 or higher.
Are Microsoft Windows systems vulnerable to CVE-2023-2270?
No, Microsoft Windows systems are not vulnerable to CVE-2023-2270.

agent/weakness
agent/type
agent/severity
agent/title
agent/references
agent/first-publish-date
agent/event
agent/remedy
agent/description
agent/author
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
vendor/microsoft
canonical/microsoft windows operating system
vendor/netskope
canonical/netskope

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.