CVE-2017-17831
CVE-2017-17831 affects GitHub Git LFS prior to 2.1.1. A remote attacker can trigger arbitrary command execution by supplying an SSH URL whose hostname starts with the dash character, as parsed from a url = line in a repository’s .lfsconfig. This corresponds to a high-severity impact (CVSS v3.0: 8...