Keybase is a PGP technology-based social networking platform that supports end-to-end encryption.Keybase Client for Windows prior to version 5.7.0 is vulnerable to a path traversal vulnerability that stems from a networked system or product failing to properly filter special elements in a resource or file path. An attacker could exploit the vulnerability to upload a file to a shared folder using a carefully crafted filename, allowing a user to execute an application that is not on their host.
CPE | Name | Operator | Version |
---|---|---|---|
keybase keybase client for windows | lt | 5.7.0 |