CVE-2021-21237
Summary (CVE-2021-21237): Git LFS on Windows is vulnerable to remote code execution when operating on a malicious repository that contains a git.bat or git.exe in the current directory. The Go runtime on Windows includes the current directory for command names without a directory separator, causi...