2021-12-14 19:26:03
Zoom
PUBLISHED
A vulnerability was discovered in the Keybase Client for Windows before version 5.6.0 when a user executed the "keybase git lfs-config" command on the command-line. In versions prior to 5.6.0, a malicious actor with write access to a users Git repository could leverage this vulnerability to potentially execute arbitrary Windows commands on a users local system.