Lucene search
TenableCVELIST:CVE-2019-3999HistoryFeb 25, 2020 - 6:15 p.m.
CVE-2019-3999
2020-02-2518:15:03
tenable
www.cve.org
2
0.002 Low
EPSS
Percentile
53.3%
Improper neutralization of special elements used in an OS command in Druva inSync Windows Client 6.5.0 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.
CNA Affected
[
{
"product": "Druva inSync Windows Client",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "6.5.0"
}
]
}
]Related
zdt
zdt
Druva inSync Windows Client 6.5.2 - Local Privilege Escalation Exploit
2020-04-30 00:00:00
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation Exploit
2020-05-12 00:00:00
cve
cve
CVE-2019-3999
2020-02-25 19:15:11
nvd
nvd
CVE-2019-3999
2020-02-25 19:15:11
prion
prion
Command injection
2020-02-25 19:15:00
packetstorm
packetstorm
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation
2020-05-12 00:00:00
Druva inSync Windows Client 6.5.2 Privilege Escalation
2020-04-29 00:00:00
exploitdb
exploitdb
Druva inSync Windows Client 6.5.2 - Local Privilege Escalation
2020-04-29 00:00:00
metasploit
metasploit
Druva inSync inSyncCPHwnet64.exe RPC Type 5 Privilege Escalation
2020-05-06 14:09:46
rapid7blog
rapid7blog
Metasploit Wrap-Up
2020-12-18 19:15:21