CVE-2020-5798

Summary

inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permissions.

Affected Software

VendorProductVersion RangeStatus
n/aDruva inSync macOS Client Installers for v6.8.0 and priorDruva inSync macOS Client Installers for v6.8.0 and prioraffected

Weaknesses

  • Privilege Escalation

ADP Enrichment

CVE Program Container

Additional References

References