Description
A CSV injection vulnerability in the Admin portal for Netskope 75.0 allows an unauthenticated user to inject malicious payload in admin's portal thus leads to compromise admin's system.
References
http://the-it-wonders.blogspot.com/2020/11/netskope-csv-injection-in-admin-ui.html
ExploitThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2020-11-20T20:15:13.067
4 years agoLast modified
2020-12-02T21:53:33.453
4 years ago