CVE-2019-4001

Summary

Improper input validation in Druva inSync Client 6.5.0 allows a local, authenticated attacker to execute arbitrary NodeJS code.

Affected Software

VendorProductVersion RangeStatus
n/aDruva inSync Client6.5.0affected

Weaknesses

  • Electron App Command Line Argument Misconfiguration

ADP Enrichment

CVE Program Container

Additional References

References