Description
An issue was discovered in the Keybase command-line client before 2.8.0-20181023124437 for Linux. An untrusted search path vulnerability in the keybase-redirector application allows a local, unprivileged user on Linux to gain root privileges via a Trojan horse binary.
Exploits (1)
References (3)
Core 3
Core References
Exploit, Vendor Advisory x_refsource_confirm
https://keybase.io/docs/secadv/kb002
Exploit, Third Party Advisory x_refsource_misc
https://blog.mirch.io/2018/12/21/cve-2018-18629-keybase-linux-privilege-escalation/
Exploit, Patch, Third Party Advisory x_refsource_misc
https://hackerone.com/reports/426944
Scores
CVSS v3
7.8
EPSS
0.0022
EPSS Percentile
44.7%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-426
Status
published
Products (1)
keybase/keybase
< 2.8.0-20181023124437
Published
Dec 20, 2018
Tracked Since
Feb 18, 2026