Druva inSync Client for MacOS

CPE Details

Druva inSync Client for MacOS
druva
insync_client
-
2022-07-18
14h56 +00:00
2022-09-23
23h03 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:druva:insync_client:-:*:*:*:*:macos:*:*

Informations

Vendor

druva

Product

insync_client

Version

-

Target Software

macos

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-36668 2022-07-11 13h06 +00:00 URL injection in Driva inSync 6.9.0 for MacOS, allows attackers to force a visit to an arbitrary url via the port parameter to the Electron App.
7.8
Haute
CVE-2021-36667 2022-07-11 13h06 +00:00 Command injection vulnerability in Druva inSync 6.9.0 for MacOS, allows attackers to execute arbitrary commands via crafted payload to the local HTTP server due to un-sanitized call to the python os.system library.
7.8
Haute
CVE-2021-36666 2022-07-11 13h06 +00:00 An issue was discovered in Druva 6.9.0 for MacOS, allows attackers to gain escalated local privileges via the inSyncDecommission.
7.8
Haute
CVE-2021-36665 2022-07-11 13h06 +00:00 An issue was discovered in Druva 6.9.0 for macOS, allows attackers to gain escalated local privileges via the inSyncUpgradeDaemon.
7.8
Haute