Описание
inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permissions.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:druva:insync:6.8.0:*:*:*:*:macos:*:*
EPSS
Процентиль: 3%
0.00016
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-276
Связанные уязвимости
github
больше 3 лет назад
inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permissions.
EPSS
Процентиль: 3%
0.00016
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-276