CVE-2019-4000
N/A
N/A
Summary
Improper neutralization of directives in dynamically evaluated code in Druva inSync Mac OS Client 6.5.0 allows a local, authenticated attacker to execute arbitrary Python expressions with root privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Druva inSync Mac OS Client | 6.5.0 | affected |
Weaknesses
- Authenticated Python Code Injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.