Improper neutralization of special elements used in an OS command in Druva inSync Windows Client 6.5.0 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.
CPE | Name | Operator | Version |
---|---|---|---|
insync_client | eq | 6.5.0 |