Lucene search
PRIOn knowledge basePRION:CVE-2019-3999HistoryFeb 25, 2020 - 7:15 p.m.
Command injection
2020-02-2519:15:00
PRIOn knowledge base
www.prio-n.com
6
0.002 Low
EPSS
Percentile
53.3%
Improper neutralization of special elements used in an OS command in Druva inSync Windows Client 6.5.0 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| insync_client | eq | 6.5.0 |
Related
cve
cve
CVE-2019-3999
2020-02-25 19:15:11
packetstorm
packetstorm
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation
2020-05-12 00:00:00
Druva inSync Windows Client 6.5.2 Privilege Escalation
2020-04-29 00:00:00
zdt
zdt
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation Exploit
2020-05-12 00:00:00
Druva inSync Windows Client 6.5.2 - Local Privilege Escalation Exploit
2020-04-30 00:00:00
nvd
nvd
CVE-2019-3999
2020-02-25 19:15:11
cvelist
cvelist
CVE-2019-3999
2020-02-25 18:15:03
exploitdb
exploitdb
Druva inSync Windows Client 6.5.2 - Local Privilege Escalation
2020-04-29 00:00:00
metasploit
metasploit
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation
2020-05-06 14:09:46
rapid7blog
rapid7blog
Metasploit Wrap-Up
2020-12-18 19:15:21