Description
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death (BSOD). Successful exploitation would require the Endpoint DLP module to be enabled in the client configuration. A successful exploit can potentially result in a denial-of-service for the local machine.
Published: 2026-03-17
Score: 6.7 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service (Local BSOD)
Action: Monitor
AI Analysis

Impact

The vulnerability is an integer overflow in the DLL injector of Netskope's Endpoint DLP Module for Netskope Client, which can be triggered by a privileged user. Exploitation results in a Blue‑Screen‑of‑Death (BSOD), causing a denial‑of‑service on the local machine. The weakness is classified as CWE‑190 (Integer Overflow or Wraparound).

Affected Systems

Affected systems are Windows installations running Netskope Endpoint DLP Module for the Netskope Client with the DLP functionality enabled. Specific affected product versions are not listed in the available data.

Risk and Exploitability

CVSS base score is 6.7, indicating moderate risk. EPSS data is unavailable, and the vulnerability is not listed in CISA's KEV catalog. Exploitation requires the Endpoint DLP module to be enabled and a privileged user to invoke the DLL injector. No public exploit evidence is documented, so actual risk depends largely on local privilege availability and the presence or absence of AV/EDR detection.

Generated by OpenCVE AI on March 17, 2026 at 21:20 UTC.

Remediation

Vendor Workaround

There are no direct workarounds. Some AV and EDR solutions may be able to detect behaviors associated with exploiting this vulnerability.

OpenCVE Recommended Actions

  • Deploy antivirus and EDR solutions that can detect exploitation behaviors associated with the integer overflow in the DLL injector.
  • Monitor the system for unexpected BSOD events and unauthorized activity.
  • Verify if Netskope has released an update or patch for the Endpoint DLP Module and apply it immediately when available.
  • As a temporary measure, disable the Endpoint DLP module in the client configuration until a patch is applied.

Generated by OpenCVE AI on March 17, 2026 at 21:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 18 Mar 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 18 Mar 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Netskope
Netskope endpoint Dlp Module For Netskope Client
Vendors & Products Netskope
Netskope endpoint Dlp Module For Netskope Client

Tue, 17 Mar 2026 20:45:00 +0000

Type Values Removed Values Added
Description Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death (BSOD). Successful exploitation would require the Endpoint DLP module to be enabled in the client configuration. A successful exploit can potentially result in a denial-of-service for the local machine.
Title Endpoint DLP Driver DLL
Weaknesses CWE-190
References
Metrics cvssV4_0

{'score': 6.7, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Netskope Endpoint Dlp Module For Netskope Client
cve-icon MITRE

Status: PUBLISHED

Assigner: Netskope

Published:

Updated: 2026-03-18T19:59:38.332Z

Reserved: 2026-02-19T15:53:20.256Z

Link: CVE-2026-2809

cve-icon Vulnrichment

Updated: 2026-03-18T19:59:35.102Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-17T21:16:19.640

Modified: 2026-03-18T14:52:44.227

Link: CVE-2026-2809

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-24T10:54:38Z

Weaknesses