Untrusted search path in GitHub CLI - #VU131750
Published: November 11, 2020 / Updated: May 18, 2026
GitHub CLI
Detailed vulnerability description
The vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to improper search path control in git executable resolution when invoking git from the current working directory on Windows. A local user can place a malicious git.exe or git.bat in the current directory to execute arbitrary code.
Only Windows users who run gh inside untrusted directories are affected.