Back to search
CVE-2019-7249
Published: Jan 31, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
In Keybase before 2.12.6 on macOS, the move RPC to the Helper was susceptible to time-to-check-time-to-use bugs and would also allow one user of the system (who didn't have root access) to tamper with another's installs.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://keybase.io/docs/secadv/kb004
x_refsource_MISC
106824
vdb-entry
x_refsource_BID
https://hackerone.com/reports/471739
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now