Richard Warren- 09 Apr, 2026
Next, Next, SYSTEM: Exploiting NSIS installer bugs to escalate privileges in Zscaler Client Connector
Exploiting NSIS installer bugs to escalate privileges in Zscaler Client Connector
Read Article-
Richard Warren
- 24 Mar, 2026
Patch Bypass: Netskope Client for Windows - Local Privilege Escalation via Rogue Server
A bypass of the CVE-2025-0309 fix allowed enrolment to a rogue server via unauthenticated Netskope reverse-proxy routes.
Read Article
David Cash-
Richard Warren
- 27 Feb, 2026
Delinea Protocol Handler - Return of the MSI: RCE via Custom Launcher
Summary Ok, so there’s no MSI this time but our last Delinea post was titled ‘MSI Strikes Back’ so we thought we’d stay on …
Read Article-
David Cash
-
Richard Warren
- 21 Jan, 2026
Advisory - Check Point Harmony Local Privilege Escalation (CVE-2025-9142)
Check Point Harmony Local Privilege Escalation (CVE-2025-9142)
Read Article
Iain Smart- 01 Sep, 2025
Breaking Boundaries - Kubernetes Namespaces and multi-tenancy
Footguns and privilege escalations making multi-tenancy difficult in Kubernetes clusters.
Read Article-
Richard Warren
-
David Cash
- 29 Aug, 2025
Advisory - Netskope Client for Windows - Local Privilege Escalation via Rogue Server (CVE-2025-0309)
Never Trust, Always Verify - except when you have to trust the server isn’t malicious .. and install this CA certificate and MSI while …
Read Article