CVE-2019-4000

Improper neutralization of directives in dynamically evaluated code in Druva inSync Mac OS Client 6.5.0 allows a local, authenticated attacker to execute arbitrary Python expressions with root privileges.
References
Link Resource
https://www.tenable.com/security/research/tra-2020-12 Exploit Third Party Advisory
Configurations

Configuration 1


Information

Published : 2020-02-25 09:15

Updated : 2021-09-08 05:22


NVD link : CVE-2019-4000

Mitre link : CVE-2019-4000

Products Affected
CWE