Vulnerability Description
Keybase Desktop Client before 5.6.0 on Windows and macOS, and before 5.6.1 on Linux, allows an attacker to obtain potentially sensitive media (such as private pictures) in the Cache and uploadtemps directories. It fails to effectively clear cached pictures, even after deletion via normal methodology within the client, or by utilizing the "Explode message/Explode now" functionality. Local filesystem access is needed by the attacker.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Keybase | Keybase | < 5.6.0 |
| Apple | Macos | - |
| Microsoft | Windows | - |
| Redhat | Linux | - |
Related Weaknesses (CWE)
References
- https://github.com/keybase/client/releasesRelease NotesThird Party Advisory
- https://hackerone.com/reports/1074930ExploitIssue TrackingThird Party Advisory
- https://johnjhacking.com/blog/cve-2021-23827/ExploitThird Party Advisory
- https://github.com/keybase/client/releasesRelease NotesThird Party Advisory
- https://hackerone.com/reports/1074930ExploitIssue TrackingThird Party Advisory
- https://johnjhacking.com/blog/cve-2021-23827/ExploitThird Party Advisory
FAQ
What is CVE-2021-23827?
CVE-2021-23827 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Keybase Desktop Client before 5.6.0 on Windows and macOS, and before 5.6.1 on Linux, allows an attacker to obtain potentially sensitive media (such as private pictures) in the Cache and uploadtemps di...
How severe is CVE-2021-23827?
CVE-2021-23827 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-23827?
Check the references section above for vendor advisories and patch information. Affected products include: Keybase Keybase, Apple Macos, Microsoft Windows, Redhat Linux.