inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permissions.

Related CVEs

CVE-2020-5798

Key Information

GHSA ID

GHSA-wjv7-jqjx-m675

Published

May 24, 2022 5:35 PM

Last Modified

May 24, 2022 5:35 PM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: July 30, 2025 6:36 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.