CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-44862

Netskope client is impacted by a vulnerability where an authenticated, local attacker can view sensitive information stored in NSClient logs which should be restricted. The vulnerability exists because the sensitive information is not masked/scrubbed before writing in the logs. A malicious user can use the sensitive information to download data and impersonate another user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.6%

CVSS Severity

CVSS v3 Score 8.4

References

Products affected by CVE-2021-44862

Netskope » Netskope » Version: 57

cpe:2.3:a:netskope:netskope:57
Netskope » Netskope » Version: 57.2.0.219

cpe:2.3:a:netskope:netskope:57.2.0.219
Netskope » Netskope » Version: 60

cpe:2.3:a:netskope:netskope:60
Netskope » Netskope » Version: 60.2.0.214

cpe:2.3:a:netskope:netskope:60.2.0.214
Netskope » Netskope » Version: 75.0

cpe:2.3:a:netskope:netskope:75.0
Netskope » Netskope » Version: 77

cpe:2.3:a:netskope:netskope:77
Netskope » Netskope » Version: 78

cpe:2.3:a:netskope:netskope:78

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-44862

Products

Pricing

Contact Us